FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-03-27 18:04:16 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
e418b8f0-9abb-420b-a7f1-1d8231b352e2webkit2-gtk3 -- Denial of service

The WebKitGTK project reports the following vulnerability.

Processing maliciously crafted web content may lead to arbitrary code execution or application crash (denial of service). Description: A memory corruption issue (use-after-free) was addressed with improved memory handling.


Discovery 2020-04-16
Entry 2020-04-18
webkit2-gtk3
< 2.28.1

https://webkitgtk.org/security/WSA-2020-0004.html
CVE-2020-11793
92243b6a-5775-4aea-8727-a938058df5bawebkit2-gtk3 -- Multiple vulnerabilities

The WebKitGTK project reports multiple vulnerabilities.


Discovery 2019-10-29
Entry 2019-10-31
webkit2-gtk3
< 2.26.1

https://webkitgtk.org/security/WSA-2019-0005.html
CVE-2019-8625
CVE-2019-8674
CVE-2019-8707
CVE-2019-8719
CVE-2019-8720
CVE-2019-8726
CVE-2019-8733
CVE-2019-8735
CVE-2019-8763
CVE-2019-8768
CVE-2019-8769
CVE-2019-8771
efd03116-c2a9-11ea-82bc-b42e99a1b9c3webkit2-gtk3 -- multible vulnerabilities

The WebKitGTK project reports vulnerabilities:

  • CVE-2020-9802: Processing maliciously crafted web content may lead to arbitrary code execution.
  • CVE-2020-9803: Processing maliciously crafted web content may lead to arbitrary code execution.
  • CVE-2020-9805: Processing maliciously crafted web content may lead to universal cross site scripting.
  • CVE-2020-9806: Processing maliciously crafted web content may lead to arbitrary code execution.
  • CVE-2020-9807: Processing maliciously crafted web content may lead to arbitrary code execution.
  • CVE-2020-9843: Processing maliciously crafted web content may lead to a cross site scripting attack.
  • CVE-2020-9850: A remote attacker may be able to cause arbitrary code execution.
  • CVE-2020-13753: CLONE_NEWUSER could potentially be used to confuse xdg- desktop-portal, which allows access outside the sandbox. TIOCSTI can be used to directly execute commands outside the sandbox by writing to the controlling terminal’s input buffer.

Discovery 2020-07-10
Entry 2020-07-10
webkit2-gtk3
< 2.28.3

https://webkitgtk.org/security/WSA-2020-0006.html
CVE-2020-9802
CVE-2020-9803
CVE-2020-9805
CVE-2020-9806
CVE-2020-9807
CVE-2020-9843
CVE-2020-9850
CVE-2020-13753
576aa394-1d85-11ec-8b7d-4f5b624574e2webkit2-gtk3 -- multiple vulnerabilities

The WebKitGTK project reports vulnerabilities:

  • CVE-2021-30858: Processing maliciously crafted web content may lead to arbitrary code execution.

Discovery 2021-09-20
Entry 2021-09-24
webkit2-gtk3
< 2.32.4

CVE-2021-30858
https://webkitgtk.org/security/WSA-2021-0005.html
1cb0af4e-d641-4f99-9432-297a89447a97webkit-gtk3 -- Multiple vulnerabilities

The WebKitGTK project reports multiple vulnerabilities.


Discovery 2020-02-14
Entry 2020-02-19
webkit2-gtk3
< 2.26.4

https://webkitgtk.org/security/WSA-2020-0002.html
CVE-2020-3862
CVE-2020-3864
CVE-2020-3865
CVE-2020-3867
CVE-2020-3868
dc8cff4c-4063-11ea-8a94-3497f6939fddwebkit-gtk3 -- Multiple vulnerabilities

The WebKitGTK project reports multiple vulnerabilities.


Discovery 2020-01-23
Entry 2020-01-26
webkit2-gtk3
< 2.26.3

https://webkitgtk.org/security/WSA-2020-0001.html
CVE-2019-8835
CVE-2019-8844
CVE-2019-8846
3e748551-c732-45f6-bd88-928da16f23a8webkit2-gtk3 -- Multiple vulnerabilities

The WebKitGTK project reports multiple vulnerabilities.


Discovery 2019-11-08
Entry 2019-11-27
webkit2-gtk3
< 2.26.2

https://webkitgtk.org/security/WSA-2019-0006.html
CVE-2019-8710
CVE-2019-8743
CVE-2019-8764
CVE-2019-8765
CVE-2019-8766
CVE-2019-8782
CVE-2019-8783
CVE-2019-8808
CVE-2019-8811
CVE-2019-8812
CVE-2019-8813
CVE-2019-8814
CVE-2019-8815
CVE-2019-8816
CVE-2019-8819
CVE-2019-8820
CVE-2019-8821
CVE-2019-8822
CVE-2019-8823