wpewebkit

Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description Embeddable web content engine
Version 2.46.4-1 [extra]

Open

Group Affected Fixed Severity Status Ticket
AVG-2820 2.36.7-1 2.36.8-1 Unknown Unknown
AVG-2780 2.36.3-1 2.36.4-1 Unknown Unknown
Issue Group Severity Remote Type Description
CVE-2022-32893 AVG-2820 Unknown Unknown Unknown Unknown
CVE-2022-32891 AVG-2820 Unknown Unknown Unknown Unknown
CVE-2022-32886 AVG-2820 Unknown Unknown Unknown Unknown
CVE-2022-26710 AVG-2780 Unknown Unknown Unknown Unknown
CVE-2022-22677 AVG-2780 Unknown Unknown Unknown Unknown
CVE-2022-22662 AVG-2780 Unknown Unknown Unknown Unknown

Resolved

Group Affected Fixed Severity Status Ticket
AVG-2789 2.36.4-2 2.36.5-1 Critical Fixed
AVG-2759 2.36.2-1 2.36.3-1 High Fixed
AVG-2484 2.32.4-1 2.34.1-1 Medium Fixed
AVG-2400 2.32.3-1 2.32.4-1 High Fixed
AVG-2221 2.32.2-1 2.32.3-1 High Fixed
AVG-2219 2.32.1-1 2.32.2-1 Medium Fixed
AVG-2217 2.30.6-1 2.32.0-1 Medium Fixed
AVG-2215 2.30.5-1 2.30.6-1 Medium Fixed
AVG-2213 2.30.4-2 High Not affected
AVG-2211 2.30.4-2 High Not affected
AVG-2209 2.30.4-2 High Not affected
AVG-1745 2.30.6-1 2.32.0-1 High Fixed
AVG-1722 2.30.5-1 2.30.6-1 High Fixed
AVG-1572 2.30.4-2 2.30.5-1 Medium Fixed
Issue Group Severity Remote Type Description
CVE-2022-32816 AVG-2789 High Yes Content spoofing
Visiting a website that frames malicious content may lead to UI spoofing.
CVE-2022-32792 AVG-2789 Critical Yes Arbitrary code execution
Processing maliciously crafted web content may lead to arbitrary code execution.
CVE-2022-30294 AVG-2759 High Yes Arbitrary code execution
use-after-free while processing web content
CVE-2022-30293 AVG-2759 High Yes Arbitrary code execution
heap-buffer overflow while processing web content
CVE-2022-26719 AVG-2759 High Yes Arbitrary code execution
memory corruption  while processing web content
CVE-2022-26717 AVG-2759 High Yes Arbitrary code execution
use-after-free while processing web content
CVE-2022-26716 AVG-2759 High Yes Arbitrary code execution
memory corruption while processing web content
CVE-2022-26709 AVG-2759 High Yes Arbitrary code execution
use-after-free while processing web content
CVE-2022-26700 AVG-2759 High Yes Arbitrary code execution
memory corruption while processing web content
CVE-2021-42762 AVG-2484 Medium Yes Sandbox escape
BubblewrapLauncher.cpp in WebKitGTK and WPE WebKit before 2.34.1 allows a limited sandbox bypass that allows a sandboxed process to trick host processes...
CVE-2021-30858 AVG-2400 High Yes Arbitrary code execution
A security issue has been found in WebKitGTK and WPE WebKit before 2.32.4. Processing maliciously crafted web content may lead to arbitrary code execution....
CVE-2021-30851 AVG-2484 Medium Yes Arbitrary code execution
A security issue has been found in WebKitGTK and WPE WebKit before 2.34.0. Processing maliciously crafted web content may lead to arbitrary code execution.
CVE-2021-30849 AVG-2400 Medium Yes Arbitrary code execution
A security issue has been found in WebKitGTK and WPE WebKit before 2.32.4. Processing maliciously crafted web content may lead to arbitrary code execution.
CVE-2021-30848 AVG-2400 Medium Yes Arbitrary code execution
A security issue has been found in WebKitGTK and WPE WebKit before 2.32.4. Processing maliciously crafted web content may lead to code execution.
CVE-2021-30846 AVG-2484 Medium Yes Arbitrary code execution
A security issue has been found in WebKitGTK and WPE WebKit before 2.34.0. Processing maliciously crafted web content may lead to arbitrary code execution.
CVE-2021-30799 AVG-2221 Medium Yes Arbitrary code execution
A security issue has been found in WebKitGTK and WPE WebKit before 2.32.3. Processing maliciously crafted web content may lead to arbitrary code execution.
CVE-2021-30797 AVG-2221 Medium Yes Arbitrary code execution
A security issue has been found in WebKitGTK and WPE WebKit before 2.32.3. Processing maliciously crafted web content may lead to code execution.
CVE-2021-30795 AVG-2221 Medium Yes Arbitrary code execution
A security issue has been found in WebKitGTK and WPE WebKit before 2.32.3. Processing maliciously crafted web content may lead to arbitrary code execution.
CVE-2021-30762 AVG-2213 High Yes Arbitrary code execution
A security issue has been found in WebKitGTK and WPE WebKit before 2.28.0. Processing maliciously crafted web content may lead to arbitrary code execution....
CVE-2021-30761 AVG-2211 High Yes Arbitrary code execution
A security issue has been found in WebKitGTK and WPE WebKit before 2.26.0. Processing maliciously crafted web content may lead to arbitrary code execution....
CVE-2021-30758 AVG-2219 Medium Yes Arbitrary code execution
A security issue has been found in WebKitGTK and WPE WebKit before 2.32.2. Processing maliciously crafted web content may lead to arbitrary code execution.
CVE-2021-30749 AVG-2221 Medium Yes Arbitrary code execution
A security issue has been found in WebKitGTK and WPE WebKit before 2.32.3. Processing maliciously crafted web content may lead to arbitrary code execution.
CVE-2021-30744 AVG-2221 Medium Yes Cross-site scripting
A security issue has been found in WebKitGTK and WPE WebKit before 2.32.3. Processing maliciously crafted web content may lead to universal cross site scripting.
CVE-2021-30734 AVG-2221 Medium Yes Arbitrary code execution
A security issue has been found in WebKitGTK and WPE WebKit before 2.32.3. Processing maliciously crafted web content may lead to arbitrary code execution.
CVE-2021-30720 AVG-2221 Medium Yes Access restriction bypass
A security issue has been found in WebKitGTK and WPE WebKit before 2.32.3. A malicious website may be able to access restricted ports on arbitrary servers.
CVE-2021-30689 AVG-2221 Medium Yes Cross-site scripting
A security issue has been found in WebKitGTK and WPE WebKit before 2.32.3. Processing maliciously crafted web content may lead to universal cross site scripting.
CVE-2021-30682 AVG-2217 Medium Yes Information disclosure
A security issue has been found in WebKitGTK and WPE WebKit before 2.32.0. A malicious application may be able to leak sensitive user information.
CVE-2021-30666 AVG-2211 High Yes Arbitrary code execution
A security issue has been found in WebKitGTK and WPE WebKit before 2.26.0. Processing maliciously crafted web content may lead to arbitrary code execution....
CVE-2021-30665 AVG-2221 High Yes Arbitrary code execution
A security issue has been found in WebKitGTK and WPE WebKit before 2.32.3. Processing maliciously crafted web content may lead to arbitrary code execution....
CVE-2021-30663 AVG-2221 Medium Yes Arbitrary code execution
A security issue has been found in WebKitGTK and WPE WebKit before 2.32.3. Processing maliciously crafted web content may lead to arbitrary code execution.
CVE-2021-30661 AVG-2209 High Yes Arbitrary code execution
A security issue has been found in WebKitGTK and WPE WebKit before 2.30.0. Processing maliciously crafted web content may lead to arbitrary code execution....
CVE-2021-21806 AVG-2215 Medium Yes Arbitrary code execution
A security issue has been found in WebKitGTK and WPE WebKit before 2.30.6. An exploitable use-after-free vulnerability exists in WebKit. A specially crafted...
CVE-2021-21779 AVG-2221 Medium Yes Information disclosure
A security issue has been found in WebKitGTK and WPE WebKit before 2.32.3. A use-after-free vulnerability exists in the way that WebKit GraphicsContext...
CVE-2021-21775 AVG-2221 Medium Yes Information disclosure
A security issue has been found in WebKitGTK and WPE WebKit before 2.32.3. A use-after-free vulnerability exists in the way certain events are processed for...
CVE-2021-1871 AVG-1745 High Yes Arbitrary code execution
A security issue was discovered in WebKitGTK before 2.32.0 and WPE WebKit before 2.32.0. A remote attacker may be able to cause arbitrary code execution....
CVE-2021-1870 AVG-1722 High Yes Arbitrary code execution
A security issue was discovered in WebKitGTK before 2.30.6 and WPE WebKit before 2.30.6. A remote attacker may be able to cause arbitrary code execution....
CVE-2021-1844 AVG-1745 Medium Yes Arbitrary code execution
A security issue was discovered in WebKitGTK before 2.32.0 and WPE WebKit before 2.32.0. Processing maliciously crafted web content may lead to arbitrary...
CVE-2021-1826 AVG-2209 Medium Yes Cross-site scripting
A security issue has been found in WebKitGTK and WPE WebKit before 2.30.0. Processing maliciously crafted web content may lead to universal cross site scripting.
CVE-2021-1825 AVG-2209 Medium Yes Cross-site scripting
A security issue has been found in WebKitGTK and WPE WebKit before 2.30.0. Processing maliciously crafted web content may lead to a cross site scripting attack.
CVE-2021-1820 AVG-2209 Medium Yes Information disclosure
A security issue has been found in WebKitGTK and WPE WebKit before 2.30.0. Processing maliciously crafted web content may result in the disclosure of process memory.
CVE-2021-1817 AVG-2209 Medium Yes Arbitrary code execution
A security issue has been found in WebKitGTK and WPE WebKit before 2.30.0. Processing maliciously crafted web content may lead to arbitrary code execution.
CVE-2021-1801 AVG-1722 Medium Yes Sandbox escape
A security issue was discovered in WebKitGTK before 2.30.6 and WPE WebKit before 2.30.6. Maliciously crafted web content may violate iframe sandboxing policy.
CVE-2021-1799 AVG-1722 Medium Yes Access restriction bypass
A security issue was discovered in WebKitGTK before 2.30.6 and WPE WebKit before 2.30.6. A malicious website may be able to access restricted ports on...
CVE-2021-1789 AVG-1722 Medium Yes Arbitrary code execution
A security issue was discovered in WebKitGTK before 2.30.6 and WPE WebKit before 2.30.6. Processing maliciously crafted web content may lead to arbitrary...
CVE-2021-1788 AVG-1745 Medium Yes Arbitrary code execution
A security issue was discovered in WebKitGTK before 2.32.0 and WPE WebKit before 2.32.0. Processing maliciously crafted web content may lead to arbitrary...
CVE-2021-1765 AVG-1722 Medium Yes Sandbox escape
A security issue was discovered in WebKitGTK before 2.30.6 and WPE WebKit before 2.30.6. Maliciously crafted web content may violate iframe sandboxing policy.
CVE-2020-29623 AVG-1722 Medium No Information disclosure
A security issue was discovered in WebKitGTK before 2.30.6 and WPE WebKit before 2.30.6. “Clear History and Website Data” did not clear the history in some...
CVE-2020-27918 AVG-1722 Medium Yes Arbitrary code execution
A security issue was discovered in WebKitGTK before 2.30.6 and WPE WebKit before 2.30.6. Processing maliciously crafted web content may lead to arbitrary...
CVE-2020-13558 AVG-1572 Medium Yes Arbitrary code execution
A use after free issue was found in WebKitGTK and WPE WebKit before version 2.30.5 in the AudioSourceProviderGStreamer class. Processing maliciously crafted...

Advisories

Date Advisory Group Severity Type
29 Oct 2021 ASA-202110-10 AVG-2484 Medium multiple issues
27 Jul 2021 ASA-202107-68 AVG-2221 High multiple issues
25 Mar 2021 ASA-202103-25 AVG-1722 High multiple issues