Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A flaw was found in the WebKitGTK package. An improper input validation issue may lead to a use-after-free vulnerability. This flaw allows attackers with network access to pass specially crafted web content files, causing a denial of service or arbitrary code execution. This CVE exists because of a CVE-2023-28205 security regression for the WebKitGTK package in Red Hat Enterprise Linux 8.8 and Red Hat Enterprise Linux 9.2.
CVSS Information
N/A
Vulnerability Type
释放后使用
Vulnerability Title
WebKitGTK 资源管理错误漏洞
Vulnerability Description
WebKitGTK是WebKit渲染引擎的全功能端口,适用于需要任何类型的Web集成的项目,包括混合HTML / CSS应用程序到成熟的Web浏览器。它提供WebKit的全部功能,适用于从台式计算机到手机,平板电脑和电视等嵌入式系统的各种系统。 WebKitGTK存在安全漏洞,该漏洞源于不正确的输入验证,可能会导致释放后使用漏洞,允许具有网络访问权限的攻击者传递特制的 Web 内容文件,从而导致拒绝服务或任意代码执行。
CVSS Information
N/A
Vulnerability Type
N/A