DSA-4797-1

Details

The following vulnerabilities have been discovered in the webkit2gtk web engine:

CVE-2020-9948

Brendan Draper discovered that processing maliciously crafted web
content may lead to arbitrary code execution.

CVE-2020-9951

Marcin Noga discovered that processing maliciously crafted web
content may lead to arbitrary code execution.

CVE-2020-9983

zhunki discovered that processing maliciously crafted web content
may lead to code execution.

CVE-2020-13584

Cisco discovered that processing maliciously crafted web content
may lead to arbitrary code execution.

Affected Packages

webkit2gtk

Debian 10

Fixed in:

2.30.3-1~deb10u1

References