webkit2gtk3-2.38.5-1.el9.3
エラータID: AXSA:2023-6241:15
リリース日:
2023/07/19 Wednesday - 05:53
題名:
webkit2gtk3-2.38.5-1.el9.3
影響のあるチャネル:
MIRACLE LINUX 9 for x86_64
Severity:
High
Description:
以下項目について対処しました。
[Security Fix]
- WebKitGTK には、メモリ破壊の問題があるため、リモートの攻撃者
により、細工された Web コンテンツを介して、任意のコードの実行を
可能とする脆弱性が存在します。(CVE-2023-32435)
- WebKitGTK には、データ型の取り違えの問題があるため、リモート
の攻撃者により、細工された Web コンテンツを介して、任意のコード
の実行を可能とする脆弱性が存在します。(CVE-2023-32439)
解決策:
パッケージをアップデートしてください。
CVE:
CVE-2023-32435
A memory corruption issue was addressed with improved state management. This issue is fixed in Safari 16.4, iOS 16.4 and iPadOS 16.4, macOS Ventura 13.3, iOS 15.7.7 and iPadOS 15.7.7. Processing web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited against versions of iOS released before iOS 15.7.
A memory corruption issue was addressed with improved state management. This issue is fixed in Safari 16.4, iOS 16.4 and iPadOS 16.4, macOS Ventura 13.3, iOS 15.7.7 and iPadOS 15.7.7. Processing web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited against versions of iOS released before iOS 15.7.
CVE-2023-32439
A type confusion issue was addressed with improved checks. This issue is fixed in iOS 16.5.1 and iPadOS 16.5.1, Safari 16.5.1, macOS Ventura 13.4.1, iOS 15.7.7 and iPadOS 15.7.7. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.
A type confusion issue was addressed with improved checks. This issue is fixed in iOS 16.5.1 and iPadOS 16.5.1, Safari 16.5.1, macOS Ventura 13.4.1, iOS 15.7.7 and iPadOS 15.7.7. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.
追加情報:
N/A
ダウンロード:
SRPMS
- webkit2gtk3-2.38.5-1.el9.3.src.rpm
MD5: 3899231e5ede12e70320526423ecf37b
SHA-256: 0590699d82a6fe266545f94cf1e3a0e4ae39a73224996fd61b5a649bc4cac3c3
Size: 31.52 MB
Asianux Server 9 for x86_64
- webkit2gtk3-2.38.5-1.el9.3.i686.rpm
MD5: 5cf8a62805990b97126d124cdd625c35
SHA-256: 95d45c5f0b91b1e019be882f53afeb61192fae8cd364b9d5ad5c099ddc47d6bc
Size: 18.51 MB - webkit2gtk3-2.38.5-1.el9.3.x86_64.rpm
MD5: 89e2fd8b9b6bb352b0dc328676749198
SHA-256: fe09ad6ab8e161c97cf8d52fd23428d47a068c9056ef80612a53620ec197c1f9
Size: 17.68 MB - webkit2gtk3-devel-2.38.5-1.el9.3.i686.rpm
MD5: 6ea981a993420ad57544cf0b15dfaab6
SHA-256: bfc32f7e7615f1ca88793ecc3ee18748a7007aeed55d7e118567f049314d6b78
Size: 315.20 kB - webkit2gtk3-devel-2.38.5-1.el9.3.x86_64.rpm
MD5: 16ebd3c0cf51841394df8d48a7f7ffee
SHA-256: 0c76b3023d8679fc473453ede5c2039011e66c3659fc1193035c8e7ec8b70e21
Size: 309.68 kB - webkit2gtk3-jsc-2.38.5-1.el9.3.i686.rpm
MD5: 301b9493a7ede6fc801191de9a2d5f95
SHA-256: 62cca9d37527d007c04c4dd0690a69cfa044a66169a25434bfd44628507da726
Size: 3.23 MB - webkit2gtk3-jsc-2.38.5-1.el9.3.x86_64.rpm
MD5: 14f181917817f5539c8dd5f1985ababd
SHA-256: 717b5d0371bf155140ca96df2b4d84e2e1aec7fbbbc93bbdbaec654c92631027
Size: 3.24 MB - webkit2gtk3-jsc-devel-2.38.5-1.el9.3.i686.rpm
MD5: 632ae60a54e866f227def21a1e68374a
SHA-256: e5c470c5ba965d89d74f9fca20b09a54eb110b8482c44b614810bac6d6cf72ef
Size: 157.07 kB - webkit2gtk3-jsc-devel-2.38.5-1.el9.3.x86_64.rpm
MD5: d88cb4edb58a11b63da0a8da0c2b5a0b
SHA-256: 0fb96ab5c8630e61ed922ae1311bbbd516fbc01a60a931a73fbe91b51a752ed4
Size: 148.52 kB