FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

qt6-webengine -- Multiple vulnerabilities

Affected packages
		qt6-webengine	<	6.7.2

Details

VuXML ID	c5415838-2f52-11ef-9cab-4ccc6adda413
Discovery	2024-05-31
Entry	2024-06-20

Qt qtwebengine-chromium repo reports:

Backports for 7 security bugs in Chromium:

CVE-2024-4948: Use after free in Dawn

CVE-2024-5274: Type Confusion in V8

CVE-2024-5493: Heap buffer overflow in WebRTC

CVE-2024-5494: Use after free in Dawn

CVE-2024-5495: Use after free in Dawn

CVE-2024-5496: Use after free in Media Session

CVE-2024-5499: Out of bounds write in Streams API

[source]

References

CVE Name	CVE-2024-4948
CVE Name	CVE-2024-5274
CVE Name	CVE-2024-5493
CVE Name	CVE-2024-5494
CVE Name	CVE-2024-5495
CVE Name	CVE-2024-5496
CVE Name	CVE-2024-5499
URL	https://code.qt.io/cgit/qt/qtwebengine-chromium.git/log/?h=118-based