CVE-2021-21775 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	Medium
Remote	Yes
Type	Information disclosure
Description	A security issue has been found in WebKitGTK and WPE WebKit before 2.32.3. A use-after-free vulnerability exists in the way certain events are processed for ImageLoader objects of WebKit. A specially crafted web page can lead to a potential information leak and further memory corruption. In order to trigger the vulnerability, a victim must be tricked into visiting a malicious webpage.

Group	Package	Affected	Fixed	Severity	Status	Ticket
AVG-2221	wpewebkit	2.32.2-1	2.32.3-1	High	Fixed
AVG-2220	webkit2gtk	2.32.2-1	2.32.3-1	High	Fixed

Date	Advisory	Group	Package	Severity	Type
27 Jul 2021	ASA-202107-68	AVG-2221	wpewebkit	High	multiple issues
27 Jul 2021	ASA-202107-67	AVG-2220	webkit2gtk	High	multiple issues

References
https://webkitgtk.org/security/WSA-2021-0004.html#CVE-2021-21775 https://talosintelligence.com/vulnerability_reports/TALOS-2021-1229