[Git][security-tracker-team/security-tracker][master] webkit2gtk / wpewebkit upstream advisory WSA-2023-0006

Alberto Garcia (@berto) berto at debian.org
Sat Jul 22 09:54:38 BST 2023 


Alberto Garcia pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e0671ab1 by Alberto Garcia at 2023-07-22T10:54:09+02:00
webkit2gtk / wpewebkit upstream advisory WSA-2023-0006

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -186,6 +186,7 @@ CVE-2023-37450
 	[buster] - webkit2gtk <end-of-life> (webkit2gtk EOL in buster)
 	- wpewebkit 2.40.4-1
 	[bookworm] - wpewebkit <ignored> (wpewebkit not covered by security support in Bookworm)
+	NOTE: https://webkitgtk.org/security/WSA-2023-0006.html
 CVE-2023-38200
 	NOT-FOR-US: Keylime
 CVE-2023-3784 (A vulnerability was found in Dooblou WiFi File Explorer 1.13.3. It has ...)
@@ -3731,6 +3732,12 @@ CVE-2023-32395 (A logic issue was addressed with improved state management. This
 	NOT-FOR-US: Apple
 CVE-2023-32394 (The issue was addressed with improved checks. This issue is fixed in i ...)
 	NOT-FOR-US: Apple
+CVE-2023-32393 (Processing web content may lead to arbitrary code execution)
+	- webkit2gtk 2.40.0-1
+	[buster] - webkit2gtk <end-of-life> (webkit2gtk EOL in buster)
+	- wpewebkit 2.40.2-2
+	[bookworm] - wpewebkit <ignored> (wpewebkit not covered by security support in Bookworm)
+	NOTE: https://webkitgtk.org/security/WSA-2023-0006.html
 CVE-2023-32392 (A privacy issue was addressed with improved private data redaction for ...)
 	NOT-FOR-US: Apple
 CVE-2023-32391 (The issue was addressed with improved checks. This issue is fixed in i ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e0671ab1380d72e0cb5298eda8f71c159ebbb871

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e0671ab1380d72e0cb5298eda8f71c159ebbb871
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230722/b905b85a/attachment.htm>

More information about the debian-security-tracker-commits mailing list