AVG-834 log

Package webkit2gtk
Status Fixed
Severity Critical
Type arbitrary code execution
Affected 2.22.4-1
Fixed 2.22.5-1
Current 2.26.1-1 [extra]
Ticket None
Created Fri Dec 14 12:14:07 2018
Issue Severity Remote Type Description
CVE-2018-4437 Critical Yes Arbitrary code execution
Multiple memory corruption issues have been found in WebKitGTK+ before 2.22.5, where processing maliciously crafted web content may lead to arbitrary code execution.
Date Advisory Package Description
14 Dec 2018 ASA-201812-10 webkit2gtk arbitrary code execution
References
https://webkitgtk.org/security/WSA-2018-0009.html