Updated webkit2 packages fix security vulnerability
Publication date: 26 Sep 2022Type: security
Affected Mageia releases : 8
CVE: CVE-2022-32886 , CVE-2022-32891 , CVE-2022-32912
Description
A buffer overflow issue which may lead to arbitrary code execution was addressed with improved memory handling. (CVE-2022-32886) Visiting a website that frames malicious content may lead to UI spoofing. he issue was addressed with improved UI handling. (CVE-2022-32891) A buffer overflow issue which may lead to arbitrary code execution was addressed with improved memory handling. (CVE-2022-32912)
References
- https://bugs.mageia.org/show_bug.cgi?id=30866
- https://webkitgtk.org/security/WSA-2022-0009.html
- https://webkitgtk.org/2022/09/16/webkitgtk2.36.8-released.html
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32886
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32891
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32912
SRPMS
8/core
- webkit2-2.36.8-1.mga8