Security
Headlines
HeadlinesLatestCVEs

Headline

Red Hat Security Advisory 2023-4201-01

Red Hat Security Advisory 2023-4201-01 - WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Issues addressed include a code execution vulnerability.

Packet Storm
#vulnerability#web#linux#red_hat#js#webkit

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

=====================================================================
Red Hat Security Advisory

Synopsis: Important: webkit2gtk3 security update
Advisory ID: RHSA-2023:4201-01
Product: Red Hat Enterprise Linux
Advisory URL: https://access.redhat.com/errata/RHSA-2023:4201
Issue date: 2023-07-18
CVE Names: CVE-2023-32435 CVE-2023-32439
=====================================================================

  1. Summary:

An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 9.

Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.

  1. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream (v. 9) - aarch64, ppc64le, s390x, x86_64

  1. Description:

WebKitGTK is the port of the portable web rendering engine WebKit to the
GTK platform.

Security Fix(es):

  • webkitgtk: memory corruption issue leading to arbitrary code execution
    (CVE-2023-32435)

  • webkitgtk: type confusion issue leading to arbitrary code execution
    (CVE-2023-32439)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.

  1. Solution:

For details on how to apply this update, which includes the changes
described in this advisory, refer to:

https://access.redhat.com/articles/11258

  1. Bugs fixed (https://bugzilla.redhat.com/):

2218626 - CVE-2023-32435 webkitgtk: memory corruption issue leading to arbitrary code execution
2218640 - CVE-2023-32439 webkitgtk: type confusion issue leading to arbitrary code execution

  1. Package List:

Red Hat Enterprise Linux AppStream (v. 9):

Source:
webkit2gtk3-2.38.5-1.el9_2.3.src.rpm

aarch64:
webkit2gtk3-2.38.5-1.el9_2.3.aarch64.rpm
webkit2gtk3-debuginfo-2.38.5-1.el9_2.3.aarch64.rpm
webkit2gtk3-debugsource-2.38.5-1.el9_2.3.aarch64.rpm
webkit2gtk3-devel-2.38.5-1.el9_2.3.aarch64.rpm
webkit2gtk3-devel-debuginfo-2.38.5-1.el9_2.3.aarch64.rpm
webkit2gtk3-jsc-2.38.5-1.el9_2.3.aarch64.rpm
webkit2gtk3-jsc-debuginfo-2.38.5-1.el9_2.3.aarch64.rpm
webkit2gtk3-jsc-devel-2.38.5-1.el9_2.3.aarch64.rpm
webkit2gtk3-jsc-devel-debuginfo-2.38.5-1.el9_2.3.aarch64.rpm

ppc64le:
webkit2gtk3-2.38.5-1.el9_2.3.ppc64le.rpm
webkit2gtk3-debuginfo-2.38.5-1.el9_2.3.ppc64le.rpm
webkit2gtk3-debugsource-2.38.5-1.el9_2.3.ppc64le.rpm
webkit2gtk3-devel-2.38.5-1.el9_2.3.ppc64le.rpm
webkit2gtk3-devel-debuginfo-2.38.5-1.el9_2.3.ppc64le.rpm
webkit2gtk3-jsc-2.38.5-1.el9_2.3.ppc64le.rpm
webkit2gtk3-jsc-debuginfo-2.38.5-1.el9_2.3.ppc64le.rpm
webkit2gtk3-jsc-devel-2.38.5-1.el9_2.3.ppc64le.rpm
webkit2gtk3-jsc-devel-debuginfo-2.38.5-1.el9_2.3.ppc64le.rpm

s390x:
webkit2gtk3-2.38.5-1.el9_2.3.s390x.rpm
webkit2gtk3-debuginfo-2.38.5-1.el9_2.3.s390x.rpm
webkit2gtk3-debugsource-2.38.5-1.el9_2.3.s390x.rpm
webkit2gtk3-devel-2.38.5-1.el9_2.3.s390x.rpm
webkit2gtk3-devel-debuginfo-2.38.5-1.el9_2.3.s390x.rpm
webkit2gtk3-jsc-2.38.5-1.el9_2.3.s390x.rpm
webkit2gtk3-jsc-debuginfo-2.38.5-1.el9_2.3.s390x.rpm
webkit2gtk3-jsc-devel-2.38.5-1.el9_2.3.s390x.rpm
webkit2gtk3-jsc-devel-debuginfo-2.38.5-1.el9_2.3.s390x.rpm

x86_64:
webkit2gtk3-2.38.5-1.el9_2.3.i686.rpm
webkit2gtk3-2.38.5-1.el9_2.3.x86_64.rpm
webkit2gtk3-debuginfo-2.38.5-1.el9_2.3.i686.rpm
webkit2gtk3-debuginfo-2.38.5-1.el9_2.3.x86_64.rpm
webkit2gtk3-debugsource-2.38.5-1.el9_2.3.i686.rpm
webkit2gtk3-debugsource-2.38.5-1.el9_2.3.x86_64.rpm
webkit2gtk3-devel-2.38.5-1.el9_2.3.i686.rpm
webkit2gtk3-devel-2.38.5-1.el9_2.3.x86_64.rpm
webkit2gtk3-devel-debuginfo-2.38.5-1.el9_2.3.i686.rpm
webkit2gtk3-devel-debuginfo-2.38.5-1.el9_2.3.x86_64.rpm
webkit2gtk3-jsc-2.38.5-1.el9_2.3.i686.rpm
webkit2gtk3-jsc-2.38.5-1.el9_2.3.x86_64.rpm
webkit2gtk3-jsc-debuginfo-2.38.5-1.el9_2.3.i686.rpm
webkit2gtk3-jsc-debuginfo-2.38.5-1.el9_2.3.x86_64.rpm
webkit2gtk3-jsc-devel-2.38.5-1.el9_2.3.i686.rpm
webkit2gtk3-jsc-devel-2.38.5-1.el9_2.3.x86_64.rpm
webkit2gtk3-jsc-devel-debuginfo-2.38.5-1.el9_2.3.i686.rpm
webkit2gtk3-jsc-devel-debuginfo-2.38.5-1.el9_2.3.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/

  1. References:

https://access.redhat.com/security/cve/CVE-2023-32435
https://access.redhat.com/security/cve/CVE-2023-32439
https://access.redhat.com/security/updates/classification/#important

  1. Contact:

The Red Hat security contact is [email protected]. More contact
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1

iQIcBAEBCAAGBQJktsBrAAoJENzjgjWX9erEiakP/0rpWz6YOCkcXbhxrw/eVo/+
kpHQ96DXZZxFueZM9M3t97uQCEKQbSx3I4SYvhAntlVI1Nyd+3NhJPBUSQCJ5Ikh
0PfSNevk2D58IxFaqVEDB4nBtuykcxoVxAucyurmpWzn232q/zUM+vu9J87WeL8r
tx6hwHpRaL7bQX9nYj2T6bNvco7A8eQnuecDRIPY9UmrKw6CR1VyzT/8rKCNHy4n
ze02Es4ubvoW91G/UxyghgcSZ9qD+VViaZMKDQ0h56Jc78jPMnxorKqnxnwiQLuM
6tTloitKIc5hSAIEGXUooAaUJEHO2zsi+H0mDWHwigz6pPkSaQ7vAOnwQZGJp5dm
w9WYM5qHrIFUEIPdGHuK84Qp0vCcmJ5PHowmS42m5R13Iv9pnGOdAbl9U56F9UMM
3ygWOVy1Lm3KXxE96CO65ljPdpnCXlj4+ldRwPNM65kBvuRVi+RsR+MPvBukvdP+
XL4QoXdaw0MRRlqHheFgvhkVIGLAXFuhy6K1KoCnnd2D1n0L5gPa4JKMqPdYVwtj
SzI2cdz/2qCXQ8ME/iYSELncO9QUW7D73ny1VYzfVEktniDOpcbk64r8Z0enfyvm
MtktJfrO1byyynN7BSt3bfTTpJjyBRWLF/NjTZPXNQFWpsm9rraV5xF2DKHKGSOX
jfKJdTzL1l7dZ7usO+Eh
=eUkv
-----END PGP SIGNATURE-----

RHSA-announce mailing list
[email protected]
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Related news

Gentoo Linux Security Advisory 202401-04

Gentoo Linux Security Advisory 202401-4 - Several vulnerabilities have been found in WebKitGTK+, the worst of which can lead to remote code execution. Versions greater than or equal to 2.42.3:4 are affected.

iPhone Spyware Exploits Obscure Chip Feature, Targets Researchers

By Deeba Ahmed Triangulation of Terror: Inside the Most Sophisticated iPhone Spyware Campaign Ever Seen. This is a post from HackRead.com Read the original post: iPhone Spyware Exploits Obscure Chip Feature, Targets Researchers

Most Sophisticated iPhone Hack Ever Exploited Apple's Hidden Hardware Feature

The Operation Triangulation spyware attacks targeting Apple iOS devices leveraged never-before-seen exploits that made it possible to even bypass pivotal hardware-based security protections erected by the company. Russian cybersecurity firm Kaspersky, which discovered the campaign at the beginning of 2023 after becoming one of the targets, described it as

Operation Triangulation: Experts Uncover Deeper Insights into iOS Zero-Day Attacks

The TriangleDB implant used to target Apple iOS devices packs in at least four different modules to record microphone, extract iCloud Keychain, steal data from SQLite databases used by various apps, and estimate the victim's location. The findings come from Kaspersky, which detailed the great lengths the adversary behind the campaign, dubbed Operation Triangulation, went to conceal and cover up

Ubuntu Security Notice USN-6264-1

Ubuntu Security Notice 6264-1 - Several security issues were discovered in the WebKitGTK Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and arbitrary code execution.

Apple Rolls Out Urgent Patches for Zero-Day Flaws Impacting iPhones, iPads and Macs

Apple has rolled out security updates to iOS, iPadOS, macOS, tvOS, watchOS, and Safari to address several security vulnerabilities, including one actively exploited zero-day bug in the wild. Tracked as CVE-2023-38606, the shortcoming resides in the kernel and permits a malicious app to modify sensitive kernel state potentially. The company said it was addressed with improved state management. "

Red Hat Security Advisory 2023-4202-01

Red Hat Security Advisory 2023-4202-01 - WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Issues addressed include a code execution vulnerability.

RHSA-2023:4202: Red Hat Security Advisory: webkit2gtk3 security update

An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2023-32435: A vulnerability was found in webkitgtk. This issue occurs when processing web content, which may lead to arbitrary code execution. * CVE-2023-32439: A vulnerability was found in webkitgtk. This issue occurs when processing maliciously crafted web content, which may lead to arbitrary code execution.

RHSA-2023:4202: Red Hat Security Advisory: webkit2gtk3 security update

An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2023-32435: A vulnerability was found in webkitgtk. This issue occurs when processing web content, which may lead to arbitrary code execution. * CVE-2023-32439: A vulnerability was found in webkitgtk. This issue occurs when processing maliciously crafted web content, which may lead to arbitrary code execution.

Apple, Google, and MOVEit Just Patched Serious Security Flaws

Plus: Microsoft fixes 78 vulnerabilities, VMWare plugs a flaw already used in attacks, and more critical updates from June.

Apple, Google, and MOVEit Just Patched Serious Security Flaws

Plus: Microsoft fixes 78 vulnerabilities, VMWare plugs a flaw already used in attacks, and more critical updates from June.

U.S. Cybersecurity Agency Adds 6 Flaws to Known Exploited Vulnerabilities Catalog

The U.S. Cybersecurity and Infrastructure Security Agency has added a batch of six flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. This comprises three vulnerabilities that Apple patched this week (CVE-2023-32434, CVE-2023-32435, and CVE-2023-32439), two flaws in VMware (CVE-2023-20867 and CVE-2023-20887), and one shortcoming impacting Zyxel

U.S. Cybersecurity Agency Adds 6 Flaws to Known Exploited Vulnerabilities Catalog

The U.S. Cybersecurity and Infrastructure Security Agency has added a batch of six flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. This comprises three vulnerabilities that Apple patched this week (CVE-2023-32434, CVE-2023-32435, and CVE-2023-32439), two flaws in VMware (CVE-2023-20867 and CVE-2023-20887), and one shortcoming impacting Zyxel

CVE-2023-32439: About the security content of Safari 16.5.1

A type confusion issue was addressed with improved checks. This issue is fixed in iOS 16.5.1 and iPadOS 16.5.1, Safari 16.5.1, macOS Ventura 13.4.1, iOS 15.7.7 and iPadOS 15.7.7. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.

2 More Apple Zero-Days Exploited in Ongoing iOS Spy Campaign

The zero-day security bugs are being used to deploy the sophisticated but "odd" TriangleDB spying implant on targeted iOS devices.

Zero-Day Alert: Apple Releases Patches for Actively Exploited Flaws in iOS, macOS, and Safari

Apple on Wednesday released a slew of updates for iOS, iPadOS, macOS, watchOS, and Safari browser to address a set of flaws it said were actively exploited in the wild. This includes a pair of zero-days that have been weaponized in a mobile surveillance campaign called Operation Triangulation that has been active since 2019. The exact threat actor behind the campaign is not known.

Zero-Day Alert: Apple Releases Patches for Actively Exploited Flaws in iOS, macOS, and Safari

Apple on Wednesday released a slew of updates for iOS, iPadOS, macOS, watchOS, and Safari browser to address a set of flaws it said were actively exploited in the wild. This includes a pair of zero-days that have been weaponized in a mobile surveillance campaign called Operation Triangulation that has been active since 2019. The exact threat actor behind the campaign is not known.

Update now! Apple fixes three actively exploited vulnerabilities

Categories: Apple Categories: Exploits and vulnerabilities Categories: News Tags: Apple Tags: kernel webkit Tags: CVE-2023-32434 Tags: CVE-2023-32435 Tags: CVE-2023-32439 Tags: type confusion Tags: integer overflow Tags: operation triangulation Apple has released security updates for several products to address a set of flaws it said were being actively exploited. (Read more...) The post Update now! Apple fixes three actively exploited vulnerabilities appeared first on Malwarebytes Labs.

Update now! Apple fixes three actively exploited vulnerabilities

Categories: Apple Categories: Exploits and vulnerabilities Categories: News Tags: Apple Tags: kernel webkit Tags: CVE-2023-32434 Tags: CVE-2023-32435 Tags: CVE-2023-32439 Tags: type confusion Tags: integer overflow Tags: operation triangulation Apple has released security updates for several products to address a set of flaws it said were being actively exploited. (Read more...) The post Update now! Apple fixes three actively exploited vulnerabilities appeared first on Malwarebytes Labs.

Packet Storm: Latest News

Acronis Cyber Protect/Backup Remote Code Execution