AVG-2789 - log back

AVG-2789 edited at 14 Oct 2022 18:16:08
Advisory qualified
- Yes
+ No
AVG-2789 edited at 29 Jul 2022 19:49:56
Status
- Vulnerable
+ Fixed
Fixed
+ 2.36.5-1
Advisory qualified
- No
+ Yes
AVG-2789 edited at 28 Jul 2022 21:17:41
Affected
- 2.36.4-1
+ 2.36.4-2
Fixed
- 2.36.5-1
Advisory qualified
- Yes
+ No
AVG-2789 created at 28 Jul 2022 21:15:49
Packages
+ wpewebkit
Issues
+ CVE-2022-32792
+ CVE-2022-32816
Status
+ Vulnerable
Severity
+ Critical
Affected
+ 2.36.4-1
Fixed
+ 2.36.5-1
Ticket
Advisory qualified
+ Yes
References
+ https://webkitgtk.org/security/WSA-2022-0007.html
Notes
+ Our WebKit2GTK and WPE WebKit versions are not affected by the 'CVE-2022-2294' vulnerability because our packages are not built using the 'USE_LIBWEBRTC' CMake option.