AVG-2870 log
| Package | wpewebkit |
| Status | Fixed |
| Severity | High |
| Type | arbitrary code execution |
| Affected | 2.42.0-1 |
| Fixed | 2.48.2-1 |
| Current | 2.50.2-1 [extra] |
| Ticket | None |
| Created | Sun May 18 19:34:02 2025 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2023-42970 | High | Yes | Arbitrary code execution | Processing malicious web content can cause a use-after-free issue due to improper memory management and result in arbitrary code execution. |
| CVE-2023-42875 | High | Yes | Arbitrary code execution | Processing malicious web content can cause a use-after-free issue due to improper memory handling and result in arbitrary code execution. The issue was... |
| Date | Advisory | Package | Type |
|---|---|---|---|
| 18 May 2025 | ASA-202505-2 | wpewebkit | arbitrary code execution |
| References |
|---|
https://webkitgtk.org/security/WSA-2025-0004.html https://wpewebkit.org/security/WSA-2025-0004.html |