AVG-899

Package webkit2gtk
Status Fixed
Severity Critical
Type arbitrary code execution
Affected 2.22.5-1
Fixed 2.22.6-1
Current 2.24.3-1 [extra]
Ticket None
Created Fri Feb 15 09:23:12 2019
Issue Severity Remote Type Description
CVE-2019-6215 Critical Yes Arbitrary code execution
A type confusion issue has been found in WebKitGTK+ before 2.22.6, where processing maliciously crafted web content may lead to arbitrary code execution.
CVE-2019-6212 Critical Yes Arbitrary code execution
Multiple memory corruption issues have been found in WebKitGTK+ before 2.22.6, where processing maliciously crafted web content may lead to arbitrary code execution.
Date Advisory Package Description
15 Feb 2019 ASA-201902-17 webkit2gtk arbitrary code execution
References
https://webkitgtk.org/security/WSA-2019-0001.html