webkit2gtk vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the webkit2gtk package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability	Vulnerable Version
H Use After Free	*
H Out-of-bounds Write	*
H Use After Free	*
H Out-of-bounds Write	*
H Out-of-bounds Write	*
H Out-of-bounds Write	*
H Out-of-bounds Write	*
H Use After Free	*
H Use After Free	*
H CVE-2022-22637	*
H Use After Free	*
H Use After Free	*
M CVE-2022-22592	*
M CVE-2022-22589	*
M Origin Validation Error	*
H Race Condition	*
H Use After Free	*
H Buffer Overflow	*
H Out-of-bounds Read	*
H Integer Overflow or Wraparound	*
H Access of Resource Using Incompatible Type ('Type Confusion')	*
H Use After Free	*
M Use After Free	*
M Memory Leak	*
M Use After Free	*
H Open Redirect	*
H Use After Free	*
M Cross-site Scripting (XSS)	*
H Access of Resource Using Incompatible Type ('Type Confusion')	*
M CVE-2021-30887	*
H Buffer Overflow	*
M Out-of-bounds Read	*
M CVE-2021-30884	*
M CVE-2021-30823	*
H Out-of-bounds Write	*
H Out-of-bounds Write	*
H Out-of-bounds Write	*
H Out-of-bounds Write	*
M CVE-2021-42762	*
H Use After Free	*
H Out-of-bounds Write	*
H Use After Free	*
H Out-of-bounds Write	*
M Cross-site Scripting (XSS)	*
H Use After Free	*
M CVE-2021-30682	*
M Improper Authentication	*
H Out-of-bounds Write	*
H Integer Overflow or Wraparound	*
H Out-of-bounds Write	*
M Exposure of Resource to Wrong Sphere	*
M Cross-site Scripting (XSS)	*
H Access of Resource Using Incompatible Type ('Type Confusion')	*
M Cross-site Scripting (XSS)	*
H Buffer Overflow	*
H Out-of-bounds Write	*
H Out-of-Bounds	*
H Use After Free	*
H CVE-2021-30797	*
M Cross-site Scripting (XSS)	*
H Use After Free	*
H Use After Free	*
H Use After Free	*
H Out-of-Bounds	*
C CVE-2021-1871	*
H Use After Free	*
C CVE-2021-1870	*
M CVE-2021-1799	*
M CVE-2021-1801	*
H Access of Resource Using Incompatible Type ('Type Confusion')	*
M CVE-2021-1765	*
H Use After Free	*
H Use After Free	*
L CVE-2020-29623	*
H Use After Free	*
H Use After Free	*
H Out-of-bounds Write	*
H Use After Free	*
H Cross-site Scripting (XSS)	*
H Access of Resource Using Incompatible Type ('Type Confusion')	*
H Use After Free	*
C Use After Free	*
M Cross-site Scripting (XSS)	*
H Arbitrary Command Injection	*
H Use After Free	*
M Out-of-bounds Read	*
M CVE-2020-9915	*
H Cross-site Scripting (XSS)	*
H Out-of-Bounds	*
C Improper Input Validation	*
C CVE-2020-9850	*
H Out-of-Bounds	*
H Out-of-Bounds	*
H CVE-2020-9802	*
H Cross-site Scripting (XSS)	*
M Always-Incorrect Control Flow Implementation	*
H Resource Exhaustion	*
L Race Condition	*
H Out-of-Bounds	*
H Out-of-Bounds	*
M Cross-site Scripting (XSS)	*
H Access of Resource Using Incompatible Type ('Type Confusion')	*
H Access of Resource Using Incompatible Type ('Type Confusion')	*
H Use After Free	*
C Improper Input Validation	*
M Cross-site Scripting (XSS)	*
H Out-of-Bounds	*
H Out-of-Bounds	*
M Out-of-Bounds	*
H Origin Validation Error	*
H Use After Free	*
H Out-of-bounds Write	*
H Out-of-bounds Write	*
H Out-of-Bounds	*
H Out-of-Bounds	*
H Out-of-bounds Write	*
H Out-of-Bounds	*
M Cross-site Scripting (XSS)	*
H Out-of-bounds Write	*
H Out-of-Bounds	*
H Out-of-Bounds	*
H Out-of-Bounds	*
H Out-of-Bounds	*
H Out-of-Bounds	*
H Out-of-Bounds	*
H Out-of-Bounds	*
H Out-of-bounds Write	*
H Out-of-Bounds	*
H Out-of-Bounds	*
H Out-of-Bounds	*
H Out-of-Bounds	*
M Cross-site Scripting (XSS)	*
M Cross-site Scripting (XSS)	*
M Cross-site Scripting (XSS)	*
H Use After Free	*
H Use After Free	*
M Improper Restriction of Rendered UI Layers or Frames	*
M Cross-site Scripting (XSS)	*
M Information Exposure	*
H Out-of-Bounds	*
H Out-of-Bounds	*
H Out-of-Bounds	*
M Information Exposure	*
H Out-of-Bounds	*
M Cross-site Scripting (XSS)	*
H Out-of-bounds Write	*
H Out-of-bounds Write	*
H Out-of-Bounds	*
H Out-of-bounds Write	*
H Out-of-bounds Write	*
H Out-of-bounds Write	*
H Out-of-bounds Write	*
H Use After Free	*
H Out-of-bounds Write	*
H Out-of-bounds Write	*
H Use After Free	*
H Out-of-bounds Write	*
H Out-of-bounds Write	*
H Out-of-bounds Write	*
H Use After Free	*
M Cross-site Scripting (XSS)	*
M Cross-site Scripting (XSS)	*
H Out-of-bounds Write	*
H Out-of-Bounds	*
H Out-of-bounds Write	*
H Out-of-bounds Write	*
H Out-of-bounds Write	*
H Out-of-bounds Write	*
H Out-of-bounds Write	*
H Out-of-bounds Write	*
H Integer Overflow or Wraparound	*
H Out-of-bounds Write	*
H Out-of-bounds Write	*
H Use After Free	*
M Access of Resource Using Incompatible Type ('Type Confusion')	*
H Out-of-bounds Write	*
M Use After Free	*
H Use After Free	*
H Improper Validation of Array Index	*
H Out-of-bounds Write	*
H Out-of-bounds Write	*
H Use After Free	*
M Out-of-bounds Read	*
H Out-of-bounds Write	*
M Out-of-bounds Read	*
H Out-of-bounds Write	*
H Out-of-bounds Write	*
H Out-of-bounds Write	*
H Out-of-bounds Write	*
M Improper Input Validation	*
M Cross-site Scripting (XSS)	*
M Information Exposure	*
H Out-of-bounds Write	*
H Access of Resource Using Incompatible Type ('Type Confusion')	*
H Use After Free	*
H Use After Free	*
H Out-of-bounds Write	*
H Out-of-bounds Write	*
H Out-of-bounds Write	*
H Improper Input Validation	*
H Out-of-bounds Write	*
M Improper Data Handling	*
L Out-of-Bounds	*
L Out-of-bounds Write	*
L Access of Resource Using Incompatible Type ('Type Confusion')	*
L Out-of-bounds Write	*
L Out-of-bounds Write	*
L Out-of-bounds Write	*
L Out-of-bounds Write	*
L Out-of-bounds Write	*
L Cross-site Scripting (XSS)	*
L Out-of-bounds Write	*
H CVE-2019-6251	*
L Out-of-Bounds	*
L Out-of-Bounds	*
L Out-of-Bounds	*
L Out-of-Bounds	*
L Out-of-Bounds	*
L Out-of-Bounds	*
L Out-of-Bounds	*
L Out-of-Bounds	*
L Out-of-Bounds	*
L Out-of-Bounds	*
L Out-of-Bounds	*
L Out-of-Bounds	*
L Out-of-Bounds	*
L Cross-site Scripting (XSS)	*
L Out-of-Bounds	*
L Out-of-Bounds	*
L CVE-2018-4361	*
L Use After Free	*
L Out-of-Bounds	*
L Use After Free	*
L Out-of-Bounds	*
L Improper Input Validation	*
L Use After Free	*
L Cross-site Scripting (XSS)	*
L Use After Free	*
L Out-of-Bounds	*
L Origin Validation Error	*
L Improper Validation of Array Index	*
L Out-of-Bounds	*
L Improper Input Validation	*
L Out-of-Bounds	*
L CVE-2018-4212	*
L Use After Free	*
L Improper Input Validation	*
L Information Exposure	*
L Out-of-Bounds	*
L Out-of-Bounds	*
L Use After Free	*
L Improper Input Validation	*
L Use After Free	*
L Out-of-Bounds	*
L Out-of-Bounds	*
L Out-of-Bounds	*
L Out-of-Bounds	*
L Out-of-Bounds	*
L Incorrect Type Conversion or Cast	*
L Out-of-Bounds	*
L Out-of-Bounds	*
L Out-of-Bounds	*
L Out-of-Bounds	*
L CVE-2018-4278	*
L Race Condition	*
L Out-of-Bounds	*
L Out-of-bounds Write	*
L Out-of-bounds Write	*
L Use After Free	*
L Out-of-bounds Read	*
L CVE-2018-4232	*
L Out-of-Bounds	*
L Out-of-Bounds	*
L Race Condition	*
L Out-of-Bounds	*
L Use After Free	*
L Insufficiently Protected Credentials	*
L Incorrect Type Conversion or Cast	*
L Use After Free	*
L Out-of-Bounds	*
L Out-of-Bounds	*
L CVE-2018-11713	*
L Improper Certificate Validation	*
L CVE-2018-11646	*
L Out-of-Bounds	*
L Out-of-Bounds	*
L Out-of-Bounds	*
L Out-of-Bounds	*
L Out-of-Bounds	*
L Out-of-Bounds	*
L Out-of-Bounds	*
M Open Redirect	<2.18.6-1~deb9u1
H Out-of-Bounds	<2.18.6-1~deb9u1
H Out-of-Bounds	<2.18.6-1~deb9u1
L Reachable Assertion	*
L Out-of-Bounds	*
H Out-of-Bounds	<2.18.6-1~deb9u1
L Out-of-Bounds	*
L Out-of-Bounds	*
L Out-of-Bounds	*
H Out-of-Bounds	<2.18.6-1~deb9u1
H Out-of-Bounds	<2.18.6-1~deb9u1
L Out-of-Bounds	*
L Cross-site Scripting (XSS)	*
H Out-of-Bounds	<2.18.6-1~deb9u1
H Arbitrary Command Injection	<2.18.6-1~deb9u1
L Out-of-Bounds	*
L Information Exposure	*
L Out-of-Bounds	*
L Out-of-Bounds	*
L Out-of-Bounds	*
L Out-of-Bounds	<2.18.1-1
H Out-of-Bounds	<2.18.6-1~deb9u1
L Out-of-Bounds	<2.18.4-1
L Out-of-Bounds	<2.18.4-1
L Out-of-Bounds	<2.18.4-1
L Out-of-Bounds	<2.18.4-1
L Out-of-Bounds	*
L Out-of-Bounds	<2.18.1-1
L Out-of-Bounds	<2.18.1-1
L Out-of-Bounds	<2.18.1-1
L Out-of-Bounds	<2.18.1-1
L Out-of-Bounds	<2.18.3-1
L Out-of-Bounds	<2.18.3-1
L Out-of-Bounds	<2.18.3-1
L Out-of-Bounds	<2.18.1-1
L Out-of-Bounds	<2.18.1-1
L Out-of-Bounds	<2.18.1-1
L Out-of-Bounds	<2.18.1-1
L Out-of-Bounds	<2.18.1-1
L Out-of-Bounds	<2.18.1-1
L Improper Input Validation	<2.16.3-2
L Integer Overflow or Wraparound	<2.16.3-2
L Out-of-Bounds	<2.18.1-1
L Information Exposure	<2.18.1-1
L Out-of-Bounds	<2.18.1-1
L Out-of-Bounds	<2.18.1-1
L Out-of-Bounds	<2.18.1-1
L Out-of-Bounds	<2.18.1-1
L Out-of-Bounds	<2.18.1-1
L Cross-site Scripting (XSS)	<2.18.1-1
L Out-of-Bounds	<2.18.1-1
L Out-of-Bounds	<2.18.1-1
L Out-of-Bounds	<2.18.1-1
L Out-of-Bounds	<2.18.1-1
L Out-of-Bounds	<2.18.1-1
L Out-of-Bounds	<2.18.1-1
L Out-of-Bounds	<2.18.1-1
L Out-of-Bounds	<2.18.1-1
L Out-of-Bounds	<2.18.1-1
L Out-of-Bounds	<2.18.1-1
L Information Exposure	<2.18.1-1
L Out-of-Bounds	<2.18.1-1
L Cross-site Scripting (XSS)	<2.18.1-1
H Out-of-Bounds	<2.16.6-0+deb9u1
H Out-of-Bounds	<2.16.6-0+deb9u1
H Out-of-Bounds	<2.16.6-0+deb9u1
L Out-of-Bounds	<2.16.3-2
H Out-of-Bounds	<2.16.6-0+deb9u1
L Out-of-Bounds	<2.16.3-2
L Out-of-Bounds	<2.16.3-2
M Improper Input Validation	<2.16.6-0+deb9u1
H Out-of-Bounds	<2.16.6-0+deb9u1
L Out-of-Bounds	<2.16.3-2
L Out-of-Bounds	<2.16.3-2
L Information Exposure	<2.16.3-2
H Out-of-Bounds	<2.16.6-0+deb9u1
L Cross-site Scripting (XSS)	<2.16.3-2
L Out-of-Bounds	<2.16.3-2
M Cross-site Scripting (XSS)	<2.16.6-0+deb9u1
L Out-of-Bounds	<2.16.3-2
H Out-of-Bounds	<2.16.6-0+deb9u1
H Out-of-Bounds	<2.16.6-0+deb9u1
L Improper Input Validation	<2.16.3-2
H Out-of-Bounds	<2.16.6-0+deb9u1
H Out-of-Bounds	<2.16.6-0+deb9u1
H Out-of-Bounds	<2.16.6-0+deb9u1
L Out-of-Bounds	<2.16.3-2
L Out-of-Bounds	<2.16.3-2
L Out-of-Bounds	<2.16.3-2
L Cross-site Scripting (XSS)	<2.16.3-2
H Out-of-Bounds	<2.16.6-0+deb9u1
L Cross-site Scripting (XSS)	<2.16.3-2
L Out-of-Bounds	<2.16.3-2
L Out-of-Bounds	<2.16.3-2
L Out-of-Bounds	<2.16.3-2
L Out-of-Bounds	<2.16.3-2
L Out-of-Bounds	<2.16.3-1
L Out-of-Bounds	<2.16.3-2
L Out-of-Bounds	<2.16.3-2
L Out-of-Bounds	<2.16.3-2
L Out-of-Bounds	<2.16.3-2
L Out-of-Bounds	<2.16.3-2
L Cross-site Scripting (XSS)	<2.16.3-1
L Cross-site Scripting (XSS)	<2.16.3-2
L Out-of-Bounds	<2.16.3-2
L Cross-site Scripting (XSS)	<2.16.3-2
L Out-of-Bounds	<2.16.3-1
L Out-of-Bounds	<2.16.3-2
L Out-of-Bounds	<2.16.3-2
L Out-of-Bounds	<2.16.3-2
L CVE-2017-2419	<2.14.6-1
L Out-of-Bounds	<2.14.6-1
L Out-of-Bounds	<2.16.3-2
L Out-of-Bounds	<2.14.6-1
L Out-of-Bounds	<2.14.6-1
L Out-of-Bounds	<2.14.6-1
L CVE-2017-2386	<2.16.3-2
L Cross-site Scripting (XSS)	<2.16.3-2
L Out-of-Bounds	<2.14.6-1
L Out-of-Bounds	<2.16.3-2
L Out-of-Bounds	<2.16.3-2
L Information Exposure	<2.16.3-2
L Out-of-Bounds	<2.14.6-1
L CVE-2017-2446	<2.14.6-1
L Out-of-Bounds	<2.16.3-2
L Out-of-Bounds	<2.16.3-2
L Improper Input Validation	<2.14.6-1
L Out-of-Bounds	<2.14.6-1
L Cross-site Scripting (XSS)	<2.14.6-1
L CVE-2017-2415	<2.14.6-1
L Out-of-Bounds	<2.16.3-2
L Out-of-Bounds	<2.16.3-2
L Out-of-Bounds	<2.14.6-1
L Out-of-Bounds	<2.14.6-1
L Out-of-Bounds	<2.14.6-1
L Out-of-Bounds	<2.14.6-1
L Out-of-Bounds	<2.16.3-2
L CVE-2017-2376	<2.16.3-2
L Use After Free	<2.14.6-1
L Out-of-Bounds	<2.14.6-1
L Out-of-Bounds	<2.14.3-1
L Out-of-Bounds	<2.14.3-1
L Out-of-Bounds	<2.14.3-1
L Improper Input Validation	<2.14.4-1
L Information Exposure	<2.14.3-1
L Out-of-Bounds	<2.14.4-1
L Out-of-Bounds	<2.14.3-1
L Out-of-Bounds	<2.14.3-1
L Out-of-Bounds	<2.14.3-1
L Out-of-Bounds	<2.14.3-1
L Information Exposure	<2.14.4-1
L Out-of-Bounds	<2.14.4-1
L Out-of-Bounds	<2.14.3-1
L Information Exposure	<2.14.3-1
L Information Exposure	<2.14.4-1
L Information Exposure	<2.14.4-1
L Information Exposure	<2.14.3-1
L Information Exposure	<2.14.3-1
L Information Exposure	<2.14.3-1
L Out-of-Bounds	<2.14.4-1
L Out-of-Bounds	<2.14.3-1
L Out-of-Bounds	<2.14.3-1
L Information Exposure	<2.14.6-1
L Out-of-Bounds	<2.14.3-1
L Out-of-Bounds	<2.14.3-1
L Out-of-Bounds	<2.14.4-1
L Out-of-Bounds	<2.14.3-1
L Out-of-Bounds	<2.14.3-1
L Out-of-Bounds	<2.14.4-1
L Out-of-Bounds	<2.14.4-1
L Out-of-Bounds	<2.14.3-1
L Out-of-Bounds	<2.14.3-1
L Out-of-Bounds	<2.14.3-1
L Out-of-Bounds	<2.14.3-1
L Out-of-Bounds	<2.14.3-1
L Out-of-Bounds	<2.14.4-1
L Improper Access Control	<2.12.4-1
L Improper Input Validation	<2.12.4-1
L Out-of-Bounds	<2.12.4-1
L Out-of-Bounds	<2.12.4-1
L Out-of-Bounds	<2.10.5-1
L Out-of-Bounds	<2.10.5-1