FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

webkit-gtk -- Multiple vulnerabilities

Affected packages
webkit2-gtk3 < 2.22.6
0 <= webkit-gtk2
0 <= webkit-gtk3

Details

VuXML ID e3aacd6d-3d01-434c-9330-bc9efd40350f
Discovery 2019-02-08
Entry 2019-02-24

The Webkitgtk project reports:

CVE-2019-6212 - Processing maliciously crafted web content may lead to arbitrary code execution. Multiple memory corruption issues were addressed with improved memory handling.

CVE-2019-6215 - Processing maliciously crafted web content may lead to arbitrary code execution. A type confusion issue was addressed with improved memory handling.

CVE-2019-6216 - Processing maliciously crafted web content may lead to arbitrary code execution. Multiple memory corruption issues were addressed with improved memory handling.

CVE-2019-6217 - Processing maliciously crafted web content may lead to arbitrary code execution. Multiple memory corruption issues were addressed with improved memory handling.

CVE-2019-6226 - Processing maliciously crafted web content may lead to arbitrary code execution. Multiple memory corruption issues were addressed with improved memory handling.

CVE-2019-6227 - Processing maliciously crafted web content may lead to arbitrary code execution. A memory corruption issue was addressed with improved memory handling.

CVE-2019-6229 - Processing maliciously crafted web content may lead to universal cross site scripting. A logic issue was addressed with improved validation.

CVE-2019-6233 - Processing maliciously crafted web content may lead to arbitrary code execution. A memory corruption issue was addressed with improved memory handling.

CVE-2019-6234 - Processing maliciously crafted web content may lead to arbitrary code execution. A memory corruption issue was addressed with improved memory handling.

References

CVE Name CVE-2019-6212
CVE Name CVE-2019-6215
CVE Name CVE-2019-6216
CVE Name CVE-2019-6217
CVE Name CVE-2019-6226
CVE Name CVE-2019-6227
CVE Name CVE-2019-6229
CVE Name CVE-2019-6233
CVE Name CVE-2019-6234
URL https://webkitgtk.org/security/WSA-2019-0001.html