INFSA-2024:10481: webkit2gtk3 security update
Information about definition
Identificator: INFSA-2024:10481
Type: security
Release date: 2025-06-26 17:46:52 UTC
Information about package
WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform.
Vulnerabilities description
- CVE-2024-44309
A data isolation bypass vulnerability was discovered in WebKitGTK. Processing maliciously crafted web content could enable a cross-site scripting (XSS) attack.
Severity level
| CVE | Score CVSS 2.0 | Score CVSS 3.x | Score CVSS 4.0 |
|---|---|---|---|
|
NIST — CVE-2024-44309
|
no information | 6.1 | no information |
Updated packages