Skip to content

webkit2gtk: Multiple vulnerabilities (CVE-2021-1788, CVE-2021-1844, CVE-2021-1871)

CVE-2021-1788

  • Versions affected: WebKitGTK before 2.32.0 and WPE WebKit before 2.32.0.
  • Processing maliciously crafted web content may lead to arbitrary code execution.
  • A use after free issue was addressed with improved memory management.

CVE-2021-1844

  • Versions affected: WebKitGTK before 2.32.0 and WPE WebKit before 2.32.0.
  • Processing maliciously crafted web content may lead to arbitrary code execution.
  • A memory corruption issue was addressed with improved validation.

CVE-2021-1871

  • Versions affected: WebKitGTK before 2.32.0 and WPE WebKit before 2.32.0.
  • A remote attacker may be able to cause arbitrary code execution.

Reference:

https://webkitgtk.org/security/WSA-2021-0003.html

Affected branches:

  • master
  • 3.13-stable
Edited by Leo
To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information