Vulnerability-Lookup

CVE-2023-42970 (GCVE-0-2023-42970)

Vulnerability from cvelistv5 – Published: 2025-04-11 14:53 – Updated: 2026-02-26 18:28

Summary

A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14, watchOS 10, tvOS 17, Safari 17. Processing web content may lead to arbitrary code execution.

Severity ?

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE

A use-after-free issue was addressed with improved memory management.

Assigner

apple

References

5 references

URL	Tags
https://support.apple.com/en-us/120949
https://support.apple.com/en-us/120950
https://support.apple.com/en-us/120948
https://support.apple.com/en-us/120947
https://support.apple.com/en-us/120330

Impacted products

5 products

Vendor	Product	Version
Apple	iOS and iPadOS	Affected: unspecified , < 17 (custom)
Apple	macOS	Affected: unspecified , < 14 (custom)
Apple	watchOS	Affected: unspecified , < 10 (custom)
Apple	tvOS	Affected: unspecified , < 17 (custom)
Apple	Safari	Affected: unspecified , < 17 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "HIGH",
              "baseScore": 8.8,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "REQUIRED",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2023-42970",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-04-12T03:55:23.004672Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-416",
                "description": "CWE-416 Use After Free",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-02-26T18:28:25.615Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS and iPadOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "17",
              "status": "affected",
              "version": "unspecified",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "macOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "14",
              "status": "affected",
              "version": "unspecified",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "watchOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "10",
              "status": "affected",
              "version": "unspecified",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "tvOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "17",
              "status": "affected",
              "version": "unspecified",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "Safari",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "17",
              "status": "affected",
              "version": "unspecified",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14, watchOS 10, tvOS 17, Safari 17. Processing web content may lead to arbitrary code execution."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "A use-after-free issue was addressed with improved memory management.",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-04-11T14:53:59.262Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "url": "https://support.apple.com/en-us/120949"
        },
        {
          "url": "https://support.apple.com/en-us/120950"
        },
        {
          "url": "https://support.apple.com/en-us/120948"
        },
        {
          "url": "https://support.apple.com/en-us/120947"
        },
        {
          "url": "https://support.apple.com/en-us/120330"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2023-42970",
    "datePublished": "2025-04-11T14:53:59.262Z",
    "dateReserved": "2023-09-14T19:05:11.485Z",
    "dateUpdated": "2026-02-26T18:28:25.615Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2023-42970",
      "date": "2026-05-20",
      "epss": "0.00223",
      "percentile": "0.44881"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2023-42970\",\"sourceIdentifier\":\"product-security@apple.com\",\"published\":\"2025-04-11T15:15:45.057\",\"lastModified\":\"2025-04-29T20:08:19.973\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14, watchOS 10, tvOS 17, Safari 17. Processing web content may lead to arbitrary code execution.\"},{\"lang\":\"es\",\"value\":\"El problema use-after-free se abord\u00f3 con una gesti\u00f3n de memoria mejorada. Este problema se soluciona en iOS 17 y iPados 17, Macos Sonoma 14, Watchos 10, Tvos 17, Safari 17. Processing Web Content puede conducir a la ejecuci\u00f3n de c\u00f3digo arbitraria.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\",\"baseScore\":8.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.8,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-416\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"17.0\",\"matchCriteriaId\":\"93FB6D0F-A668-47CF-A63D-755CA3BA259A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"17.0\",\"matchCriteriaId\":\"B511B802-B0A2-412D-ADA4-8B783BDF1880\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"17.0\",\"matchCriteriaId\":\"E22CC7F9-F302-40B1-9B02-00FBC9805199\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"14.0\",\"matchCriteriaId\":\"7A5DD3D5-FB4F-4313-B873-DCED87FC4605\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"17.0\",\"matchCriteriaId\":\"93620AD0-115A-4F86-B533-76A190AF41A0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"10.0\",\"matchCriteriaId\":\"5A079CEF-8220-487C-B114-30BCC45647D6\"}]}]}],\"references\":[{\"url\":\"https://support.apple.com/en-us/120330\",\"source\":\"product-security@apple.com\",\"tags\":[\"Release Notes\",\"Vendor Advisory\"]},{\"url\":\"https://support.apple.com/en-us/120947\",\"source\":\"product-security@apple.com\",\"tags\":[\"Release Notes\",\"Vendor Advisory\"]},{\"url\":\"https://support.apple.com/en-us/120948\",\"source\":\"product-security@apple.com\",\"tags\":[\"Release Notes\",\"Vendor Advisory\"]},{\"url\":\"https://support.apple.com/en-us/120949\",\"source\":\"product-security@apple.com\",\"tags\":[\"Release Notes\",\"Vendor Advisory\"]},{\"url\":\"https://support.apple.com/en-us/120950\",\"source\":\"product-security@apple.com\",\"tags\":[\"Release Notes\",\"Vendor Advisory\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 8.8, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"REQUIRED\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"HIGH\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2023-42970\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-04-11T17:09:36.990409Z\"}}}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-416\", \"description\": \"CWE-416 Use After Free\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-04-11T17:09:23.904Z\"}}], \"cna\": {\"affected\": [{\"vendor\": \"Apple\", \"product\": \"iOS and iPadOS\", \"versions\": [{\"status\": \"affected\", \"version\": \"unspecified\", \"lessThan\": \"17\", \"versionType\": \"custom\"}]}, {\"vendor\": \"Apple\", \"product\": \"macOS\", \"versions\": [{\"status\": \"affected\", \"version\": \"unspecified\", \"lessThan\": \"14\", \"versionType\": \"custom\"}]}, {\"vendor\": \"Apple\", \"product\": \"watchOS\", \"versions\": [{\"status\": \"affected\", \"version\": \"unspecified\", \"lessThan\": \"10\", \"versionType\": \"custom\"}]}, {\"vendor\": \"Apple\", \"product\": \"tvOS\", \"versions\": [{\"status\": \"affected\", \"version\": \"unspecified\", \"lessThan\": \"17\", \"versionType\": \"custom\"}]}, {\"vendor\": \"Apple\", \"product\": \"Safari\", \"versions\": [{\"status\": \"affected\", \"version\": \"unspecified\", \"lessThan\": \"17\", \"versionType\": \"custom\"}]}], \"references\": [{\"url\": \"https://support.apple.com/en-us/120949\"}, {\"url\": \"https://support.apple.com/en-us/120950\"}, {\"url\": \"https://support.apple.com/en-us/120948\"}, {\"url\": \"https://support.apple.com/en-us/120947\"}, {\"url\": \"https://support.apple.com/en-us/120330\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14, watchOS 10, tvOS 17, Safari 17. Processing web content may lead to arbitrary code execution.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"description\": \"A use-after-free issue was addressed with improved memory management.\"}]}], \"providerMetadata\": {\"orgId\": \"286789f9-fbc2-4510-9f9a-43facdede74c\", \"shortName\": \"apple\", \"dateUpdated\": \"2025-04-11T14:53:59.262Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2023-42970\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-04-12T03:55:21.744Z\", \"dateReserved\": \"2023-09-14T19:05:11.485Z\", \"assignerOrgId\": \"286789f9-fbc2-4510-9f9a-43facdede74c\", \"datePublished\": \"2025-04-11T14:53:59.262Z\", \"assignerShortName\": \"apple\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

FKIE_CVE-2023-42970

Vulnerability from fkie_nvd - Published: 2025-04-11 15:15 - Updated: 2025-04-29 20:08

Severity ?

8.8 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Summary

References

URL	Tags
product-security@apple.com	https://support.apple.com/en-us/120330	Release Notes, Vendor Advisory
product-security@apple.com	https://support.apple.com/en-us/120947	Release Notes, Vendor Advisory
product-security@apple.com	https://support.apple.com/en-us/120948	Release Notes, Vendor Advisory
product-security@apple.com	https://support.apple.com/en-us/120949	Release Notes, Vendor Advisory
product-security@apple.com	https://support.apple.com/en-us/120950	Release Notes, Vendor Advisory

Impacted products

Vendor	Product	Version
apple	safari	*
apple	ipados	*
apple	iphone_os	*
apple	macos	*
apple	tvos	*
apple	watchos	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "93FB6D0F-A668-47CF-A63D-755CA3BA259A",
              "versionEndExcluding": "17.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "B511B802-B0A2-412D-ADA4-8B783BDF1880",
              "versionEndExcluding": "17.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "E22CC7F9-F302-40B1-9B02-00FBC9805199",
              "versionEndExcluding": "17.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "7A5DD3D5-FB4F-4313-B873-DCED87FC4605",
              "versionEndExcluding": "14.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "93620AD0-115A-4F86-B533-76A190AF41A0",
              "versionEndExcluding": "17.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "5A079CEF-8220-487C-B114-30BCC45647D6",
              "versionEndExcluding": "10.0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14, watchOS 10, tvOS 17, Safari 17. Processing web content may lead to arbitrary code execution."
    },
    {
      "lang": "es",
      "value": "El problema use-after-free se abord\u00f3 con una gesti\u00f3n de memoria mejorada. Este problema se soluciona en iOS 17 y iPados 17, Macos Sonoma 14, Watchos 10, Tvos 17, Safari 17. Processing Web Content puede conducir a la ejecuci\u00f3n de c\u00f3digo arbitraria."
    }
  ],
  "id": "CVE-2023-42970",
  "lastModified": "2025-04-29T20:08:19.973",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 8.8,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 5.9,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2025-04-11T15:15:45.057",
  "references": [
    {
      "source": "product-security@apple.com",
      "tags": [
        "Release Notes",
        "Vendor Advisory"
      ],
      "url": "https://support.apple.com/en-us/120330"
    },
    {
      "source": "product-security@apple.com",
      "tags": [
        "Release Notes",
        "Vendor Advisory"
      ],
      "url": "https://support.apple.com/en-us/120947"
    },
    {
      "source": "product-security@apple.com",
      "tags": [
        "Release Notes",
        "Vendor Advisory"
      ],
      "url": "https://support.apple.com/en-us/120948"
    },
    {
      "source": "product-security@apple.com",
      "tags": [
        "Release Notes",
        "Vendor Advisory"
      ],
      "url": "https://support.apple.com/en-us/120949"
    },
    {
      "source": "product-security@apple.com",
      "tags": [
        "Release Notes",
        "Vendor Advisory"
      ],
      "url": "https://support.apple.com/en-us/120950"
    }
  ],
  "sourceIdentifier": "product-security@apple.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-416"
        }
      ],
      "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
      "type": "Secondary"
    }
  ]
}

GHSA-9V5V-QFV2-66QP

Vulnerability from github – Published: 2025-04-11 15:32 – Updated: 2025-04-11 18:31

Details

Severity ?

8.8 (High)


                  
                    CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2023-42970"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-416"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2025-04-11T15:15:45Z",
    "severity": "HIGH"
  },
  "details": "A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14, watchOS 10, tvOS 17, Safari 17. Processing web content may lead to arbitrary code execution.",
  "id": "GHSA-9v5v-qfv2-66qp",
  "modified": "2025-04-11T18:31:05Z",
  "published": "2025-04-11T15:32:30Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42970"
    },
    {
      "type": "WEB",
      "url": "https://support.apple.com/en-us/120330"
    },
    {
      "type": "WEB",
      "url": "https://support.apple.com/en-us/120947"
    },
    {
      "type": "WEB",
      "url": "https://support.apple.com/en-us/120948"
    },
    {
      "type": "WEB",
      "url": "https://support.apple.com/en-us/120949"
    },
    {
      "type": "WEB",
      "url": "https://support.apple.com/en-us/120950"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

GSD-2023-42970

Vulnerability from gsd - Updated: 2023-12-13 01:20

Details

** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

Aliases

CVE-2023-42970

Aliases

CVE-2023-42970

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2023-42970",
    "id": "GSD-2023-42970"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2023-42970"
      ],
      "id": "GSD-2023-42970",
      "modified": "2023-12-13T01:20:21.799343Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2023-42970",
        "STATE": "RESERVED"
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
          }
        ]
      }
    }
  }
}

RHSA-2024:2126

Vulnerability from csaf_redhat - Published: 2024-04-30 10:37 - Updated: 2026-03-18 02:25

Summary

Red Hat Security Advisory: webkit2gtk3 security update

Severity

Important

Notes

Topic: An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details: WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fix(es): * webkitgtk: use-after-free in the MediaRecorder API of the WebKit GStreamer-based ports (CVE-2023-39928) * webkitgtk: Arbitrary Remote Code Execution (CVE-2023-42917) * webkitgtk: processing a malicious image may lead to a denial of service (CVE-2023-42883) * webkitgtk: processing malicious web content may lead to arbitrary code execution (CVE-2023-42890) * webkitgtk: Processing web content may lead to arbitrary code execution (CVE-2023-40414) * webkitgtk: Processing a file may lead to a denial of service or potentially disclose memory contents (CVE-2014-1745) * webkitgtk: User password may be read aloud by a text-to-speech accessibility feature (CVE-2023-32359) * webkitgtk: Processing web content may lead to a denial of service (CVE-2023-41983) * webkitgtk: Processing web content may lead to arbitrary code execution (CVE-2023-42852) * webkitgtk: A malicious website may cause unexpected cross-origin behavior (CVE-2024-23271) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 9 Release Notes linked from the References section.

Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

CVE-2014-1745

A use-after-free vulnerability was found in the SVG implementation within WebKitGTK. This flaw allows remote attackers to exploit the removal of an SVGFontFaceElement object, which occurs through specific vectors that trigger the deletion of the object during rendering.

7.1 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:L

CWE-400 - Uncontrolled Resource Consumption

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2023-32359

A flaw was found in webkitgtk where a user’s password may be read aloud by a text-to-speech accessibility feature.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2023-39928

A use-after-free vulnerability was found in the WebKitGTK's MediaRecorder API that may lead to memory corruption and Remote Code Execution. The victim needs to access a malicious web page to trigger this vulnerability.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2023-40414

A vulnerability in WebKitGTK and WPE WebKit could allow an attacker to execute arbitrary code on a target system. The issue arises from a use-after-free flaw in memory management when processing web content. This flaw can potentially give attackers the ability to take control of affected systems.

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2023-41983

A vulnerability in WebKitGTK and WPE WebKit may result in a denial-of-service when processing web content. This issue arises from improper memory handling, which could be exploited by attackers to crash the affected systems.

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2023-42852

A vulnerability was found in WebKitGTK and WPE WebKit, which allows remote attacker to perform arbitrary code execution when processing web content. This vulnerability caused by insufficient checks, which could be exploited by attackers to execute malicious code on affected systems.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2023-42875

A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory handling and result in arbitrary code execution.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2023-42883

A flaw was found in WebKitGTK. This issue exists due to a boundary error when processing a malicious image, which could result in a denial of service.

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE-20 - Improper Input Validation

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2023-42890

A flaw was found in WebKitGTK. This issue exists due to a boundary error when processing malicious HTML content in WebKit, which could result in memory corruption and arbitrary code execution on the target system.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-20 - Improper Input Validation

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2023-42917

A flaw was found in WebKitGTK. Processing malicious web content may lead to remote code execution. This vulnerability is known to be actively exploited in the wild and was included in the CISA's KEV catalog.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-787 - Out-of-bounds Write

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround

Threats

Exploit Status CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog

Impact Important

CVE-2023-42970

A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in arbitrary code execution.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2023-43000

A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in memory corruption.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround

Threats

Exploit Status CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog

Impact Important

CVE-2024-23271

A flaw was found in WebKit. This flaw allows a remote attacker to trigger unexpected cross-origin behavior via a malicious website.

4.6 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N

CWE-942 - Permissive Cross-domain Security Policy with Untrusted Domains

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

References

75 references

URL	Category
https://access.redhat.com/errata/RHSA-2024:2126	self
https://docs.redhat.com/en/documentation/red_hat_…	external
https://access.redhat.com/security/updates/classi…	external
https://bugzilla.redhat.com/show_bug.cgi?id=2241400	external
https://bugzilla.redhat.com/show_bug.cgi?id=2253058	external
https://bugzilla.redhat.com/show_bug.cgi?id=2254326	external
https://bugzilla.redhat.com/show_bug.cgi?id=2254327	external
https://bugzilla.redhat.com/show_bug.cgi?id=2270143	external
https://bugzilla.redhat.com/show_bug.cgi?id=2270151	external
https://bugzilla.redhat.com/show_bug.cgi?id=2271449	external
https://bugzilla.redhat.com/show_bug.cgi?id=2271453	external
https://bugzilla.redhat.com/show_bug.cgi?id=2271456	external
https://bugzilla.redhat.com/show_bug.cgi?id=2314696	external
https://issues.redhat.com/browse/RHEL-3960	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2014-1745	self
https://bugzilla.redhat.com/show_bug.cgi?id=2270151	external
https://www.cve.org/CVERecord?id=CVE-2014-1745	external
https://nvd.nist.gov/vuln/detail/CVE-2014-1745	external
https://webkitgtk.org/security/WSA-2024-0001.html	external
https://access.redhat.com/security/cve/CVE-2023-32359	self
https://bugzilla.redhat.com/show_bug.cgi?id=2271449	external
https://www.cve.org/CVERecord?id=CVE-2023-32359	external
https://nvd.nist.gov/vuln/detail/CVE-2023-32359	external
https://webkitgtk.org/security/WSA-2023-0010.html	external
https://access.redhat.com/security/cve/CVE-2023-39928	self
https://bugzilla.redhat.com/show_bug.cgi?id=2241400	external
https://www.cve.org/CVERecord?id=CVE-2023-39928	external
https://nvd.nist.gov/vuln/detail/CVE-2023-39928	external
https://webkitgtk.org/security/WSA-2023-0009.html	external
https://access.redhat.com/security/cve/CVE-2023-40414	self
https://bugzilla.redhat.com/show_bug.cgi?id=2270143	external
https://www.cve.org/CVERecord?id=CVE-2023-40414	external
https://nvd.nist.gov/vuln/detail/CVE-2023-40414	external
https://access.redhat.com/security/cve/CVE-2023-41983	self
https://bugzilla.redhat.com/show_bug.cgi?id=2271453	external
https://www.cve.org/CVERecord?id=CVE-2023-41983	external
https://nvd.nist.gov/vuln/detail/CVE-2023-41983	external
https://access.redhat.com/security/cve/CVE-2023-42852	self
https://bugzilla.redhat.com/show_bug.cgi?id=2271456	external
https://www.cve.org/CVERecord?id=CVE-2023-42852	external
https://nvd.nist.gov/vuln/detail/CVE-2023-42852	external
https://access.redhat.com/security/cve/CVE-2023-42875	self
https://bugzilla.redhat.com/show_bug.cgi?id=2366497	external
https://www.cve.org/CVERecord?id=CVE-2023-42875	external
https://nvd.nist.gov/vuln/detail/CVE-2023-42875	external
https://webkitgtk.org/security/WSA-2025-0004.html	external
https://access.redhat.com/security/cve/CVE-2023-42883	self
https://bugzilla.redhat.com/show_bug.cgi?id=2254326	external
https://www.cve.org/CVERecord?id=CVE-2023-42883	external
https://nvd.nist.gov/vuln/detail/CVE-2023-42883	external
https://access.redhat.com/security/cve/CVE-2023-42890	self
https://bugzilla.redhat.com/show_bug.cgi?id=2254327	external
https://www.cve.org/CVERecord?id=CVE-2023-42890	external
https://nvd.nist.gov/vuln/detail/CVE-2023-42890	external
https://access.redhat.com/security/cve/CVE-2023-42917	self
https://bugzilla.redhat.com/show_bug.cgi?id=2253058	external
https://www.cve.org/CVERecord?id=CVE-2023-42917	external
https://nvd.nist.gov/vuln/detail/CVE-2023-42917	external
https://webkitgtk.org/security/WSA-2023-0011.html	external
https://www.cisa.gov/known-exploited-vulnerabilit…	external
https://access.redhat.com/security/cve/CVE-2023-42970	self
https://bugzilla.redhat.com/show_bug.cgi?id=2366498	external
https://www.cve.org/CVERecord?id=CVE-2023-42970	external
https://nvd.nist.gov/vuln/detail/CVE-2023-42970	external
https://access.redhat.com/security/cve/CVE-2023-43000	self
https://bugzilla.redhat.com/show_bug.cgi?id=2416324	external
https://www.cve.org/CVERecord?id=CVE-2023-43000	external
https://nvd.nist.gov/vuln/detail/CVE-2023-43000	external
https://webkitgtk.org/security/WSA-2025-0008.html	external
https://access.redhat.com/security/cve/CVE-2024-23271	self
https://bugzilla.redhat.com/show_bug.cgi?id=2314696	external
https://www.cve.org/CVERecord?id=CVE-2024-23271	external
https://nvd.nist.gov/vuln/detail/CVE-2024-23271	external
https://webkitgtk.org/security/WSA-2024-0005.html	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform.\n\nSecurity Fix(es):\n\n* webkitgtk: use-after-free in the MediaRecorder API of the WebKit GStreamer-based ports (CVE-2023-39928)\n\n* webkitgtk: Arbitrary Remote Code Execution (CVE-2023-42917)\n\n* webkitgtk: processing a malicious image may lead to a denial of service (CVE-2023-42883)\n\n* webkitgtk: processing malicious web content may lead to arbitrary code execution (CVE-2023-42890)\n\n* webkitgtk: Processing web content may lead to arbitrary code execution (CVE-2023-40414)\n\n* webkitgtk: Processing a file may lead to a denial of service or potentially disclose memory contents (CVE-2014-1745)\n\n* webkitgtk: User password may be read aloud by a text-to-speech accessibility feature (CVE-2023-32359)\n\n* webkitgtk: Processing web content may lead to a denial of service (CVE-2023-41983)\n\n* webkitgtk: Processing web content may lead to arbitrary code execution (CVE-2023-42852)\n\n* webkitgtk: A malicious website may cause unexpected cross-origin behavior (CVE-2024-23271)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 9 Release Notes linked from the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2024:2126",
        "url": "https://access.redhat.com/errata/RHSA-2024:2126"
      },
      {
        "category": "external",
        "summary": "https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/9/html/9.4_release_notes/index",
        "url": "https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/9/html/9.4_release_notes/index"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2241400",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2241400"
      },
      {
        "category": "external",
        "summary": "2253058",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2253058"
      },
      {
        "category": "external",
        "summary": "2254326",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2254326"
      },
      {
        "category": "external",
        "summary": "2254327",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2254327"
      },
      {
        "category": "external",
        "summary": "2270143",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270143"
      },
      {
        "category": "external",
        "summary": "2270151",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270151"
      },
      {
        "category": "external",
        "summary": "2271449",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271449"
      },
      {
        "category": "external",
        "summary": "2271453",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271453"
      },
      {
        "category": "external",
        "summary": "2271456",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271456"
      },
      {
        "category": "external",
        "summary": "2314696",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314696"
      },
      {
        "category": "external",
        "summary": "RHEL-3960",
        "url": "https://issues.redhat.com/browse/RHEL-3960"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_2126.json"
      }
    ],
    "title": "Red Hat Security Advisory: webkit2gtk3 security update",
    "tracking": {
      "current_release_date": "2026-03-18T02:25:40+00:00",
      "generator": {
        "date": "2026-03-18T02:25:40+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.7.3"
        }
      },
      "id": "RHSA-2024:2126",
      "initial_release_date": "2024-04-30T10:37:42+00:00",
      "revision_history": [
        {
          "date": "2024-04-30T10:37:42+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2025-03-19T21:01:45+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-03-18T02:25:40+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream (v. 9)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream (v. 9)",
                  "product_id": "AppStream-9.4.0.GA",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:enterprise_linux:9::appstream"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.42.5-1.el9.src",
                "product": {
                  "name": "webkit2gtk3-0:2.42.5-1.el9.src",
                  "product_id": "webkit2gtk3-0:2.42.5-1.el9.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.42.5-1.el9?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.42.5-1.el9.aarch64",
                "product": {
                  "name": "webkit2gtk3-0:2.42.5-1.el9.aarch64",
                  "product_id": "webkit2gtk3-0:2.42.5-1.el9.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.42.5-1.el9?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
                  "product_id": "webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.42.5-1.el9?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
                  "product_id": "webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.42.5-1.el9?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.42.5-1.el9?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
                  "product_id": "webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.42.5-1.el9?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
                  "product_id": "webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.42.5-1.el9?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.42.5-1.el9?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.42.5-1.el9?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.42.5-1.el9?arch=aarch64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.42.5-1.el9.ppc64le",
                "product": {
                  "name": "webkit2gtk3-0:2.42.5-1.el9.ppc64le",
                  "product_id": "webkit2gtk3-0:2.42.5-1.el9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.42.5-1.el9?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
                  "product_id": "webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.42.5-1.el9?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
                  "product_id": "webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.42.5-1.el9?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.42.5-1.el9?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
                  "product_id": "webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.42.5-1.el9?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
                  "product_id": "webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.42.5-1.el9?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.42.5-1.el9?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.42.5-1.el9?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.42.5-1.el9?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.42.5-1.el9.i686",
                "product": {
                  "name": "webkit2gtk3-0:2.42.5-1.el9.i686",
                  "product_id": "webkit2gtk3-0:2.42.5-1.el9.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.42.5-1.el9?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.42.5-1.el9.i686",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.42.5-1.el9.i686",
                  "product_id": "webkit2gtk3-devel-0:2.42.5-1.el9.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.42.5-1.el9?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
                  "product_id": "webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.42.5-1.el9?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.42.5-1.el9?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
                  "product_id": "webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.42.5-1.el9?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
                  "product_id": "webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.42.5-1.el9?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.42.5-1.el9?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.42.5-1.el9?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.42.5-1.el9?arch=i686"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i686"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.42.5-1.el9.x86_64",
                "product": {
                  "name": "webkit2gtk3-0:2.42.5-1.el9.x86_64",
                  "product_id": "webkit2gtk3-0:2.42.5-1.el9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.42.5-1.el9?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
                  "product_id": "webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.42.5-1.el9?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
                  "product_id": "webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.42.5-1.el9?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.42.5-1.el9?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
                  "product_id": "webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.42.5-1.el9?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
                  "product_id": "webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.42.5-1.el9?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.42.5-1.el9?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.42.5-1.el9?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.42.5-1.el9?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.42.5-1.el9.s390x",
                "product": {
                  "name": "webkit2gtk3-0:2.42.5-1.el9.s390x",
                  "product_id": "webkit2gtk3-0:2.42.5-1.el9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.42.5-1.el9?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
                  "product_id": "webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.42.5-1.el9?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
                  "product_id": "webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.42.5-1.el9?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.42.5-1.el9?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
                  "product_id": "webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.42.5-1.el9?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
                  "product_id": "webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.42.5-1.el9?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.42.5-1.el9?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.42.5-1.el9?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.42.5-1.el9?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.42.5-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64"
        },
        "product_reference": "webkit2gtk3-0:2.42.5-1.el9.aarch64",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.42.5-1.el9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686"
        },
        "product_reference": "webkit2gtk3-0:2.42.5-1.el9.i686",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.42.5-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le"
        },
        "product_reference": "webkit2gtk3-0:2.42.5-1.el9.ppc64le",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.42.5-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x"
        },
        "product_reference": "webkit2gtk3-0:2.42.5-1.el9.s390x",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.42.5-1.el9.src as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src"
        },
        "product_reference": "webkit2gtk3-0:2.42.5-1.el9.src",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.42.5-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64"
        },
        "product_reference": "webkit2gtk3-0:2.42.5-1.el9.x86_64",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.42.5-1.el9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.42.5-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64"
        },
        "product_reference": "webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.42.5-1.el9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686"
        },
        "product_reference": "webkit2gtk3-devel-0:2.42.5-1.el9.i686",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le"
        },
        "product_reference": "webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.42.5-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x"
        },
        "product_reference": "webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.42.5-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.42.5-1.el9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.42.5-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64",
        "relates_to_product_reference": "AppStream-9.4.0.GA"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2014-1745",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "discovery_date": "2024-03-18T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2270151"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A use-after-free vulnerability was found in the SVG implementation within WebKitGTK. This flaw allows remote attackers to exploit the removal of an SVGFontFaceElement object, which occurs through specific vectors that trigger the deletion of the object during rendering.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing a file may lead to a denial of service or potentially disclose memory contents",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2014-1745"
        },
        {
          "category": "external",
          "summary": "RHBZ#2270151",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270151"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2014-1745",
          "url": "https://www.cve.org/CVERecord?id=CVE-2014-1745"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-1745",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-1745"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0001.html",
          "url": "https://webkitgtk.org/security/WSA-2024-0001.html"
        }
      ],
      "release_date": "2024-02-05T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-04-30T10:37:42+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:2126"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: Processing a file may lead to a denial of service or potentially disclose memory contents"
    },
    {
      "cve": "CVE-2023-32359",
      "discovery_date": "2024-03-25T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2271449"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in webkitgtk where a user\u2019s password may be read aloud by a text-to-speech accessibility feature.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: User password may be read aloud by a text-to-speech accessibility feature",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-32359"
        },
        {
          "category": "external",
          "summary": "RHBZ#2271449",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271449"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-32359",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-32359"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-32359",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-32359"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2023-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2023-0010.html"
        }
      ],
      "release_date": "2023-11-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-04-30T10:37:42+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:2126"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: User password may be read aloud by a text-to-speech accessibility feature"
    },
    {
      "cve": "CVE-2023-39928",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2023-09-28T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2241400"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A use-after-free vulnerability was found in the WebKitGTK\u0027s MediaRecorder API that may lead to memory corruption and Remote Code Execution. The victim needs to access a malicious web page to trigger this vulnerability.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: use-after-free in the MediaRecorder API of the WebKit GStreamer-based ports",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-39928"
        },
        {
          "category": "external",
          "summary": "RHBZ#2241400",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2241400"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-39928",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-39928"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-39928",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39928"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2023-0009.html",
          "url": "https://webkitgtk.org/security/WSA-2023-0009.html"
        }
      ],
      "release_date": "2023-09-28T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-04-30T10:37:42+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:2126"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: use-after-free in the MediaRecorder API of the WebKit GStreamer-based ports"
    },
    {
      "cve": "CVE-2023-40414",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2024-03-18T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2270143"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability in WebKitGTK and WPE WebKit could allow an attacker to execute arbitrary code on a target system. The issue arises from a use-after-free flaw in memory management when processing web content. This flaw can potentially give attackers the ability to take control of affected systems.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated Imporatant because it affects the confidentiality, integrity, and availability (CIA) of systems, with a high severity rating.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-40414"
        },
        {
          "category": "external",
          "summary": "RHBZ#2270143",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270143"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-40414",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-40414"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-40414",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-40414"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0001.html",
          "url": "https://webkitgtk.org/security/WSA-2024-0001.html"
        }
      ],
      "release_date": "2024-02-05T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-04-30T10:37:42+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:2126"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2023-41983",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2024-03-25T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2271453"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability in WebKitGTK and WPE WebKit may result in a denial-of-service when processing web content. This issue arises from improper memory handling, which could be exploited by attackers to crash the affected systems.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing web content may lead to a denial of service",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-41983"
        },
        {
          "category": "external",
          "summary": "RHBZ#2271453",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271453"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-41983",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-41983"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-41983",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-41983"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2023-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2023-0010.html"
        }
      ],
      "release_date": "2023-11-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-04-30T10:37:42+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:2126"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: Processing web content may lead to a denial of service"
    },
    {
      "cve": "CVE-2023-42852",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2024-03-25T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2271456"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKitGTK and WPE WebKit, which allows remote attacker to perform arbitrary code execution when processing web content. This vulnerability caused by insufficient checks, which could be exploited by attackers to execute malicious code on affected systems.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated important because it affects the confidentiality, integrity, and availability (CIA) of systems, with a high severity rating.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-42852"
        },
        {
          "category": "external",
          "summary": "RHBZ#2271456",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271456"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-42852",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-42852"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-42852",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42852"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2023-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2023-0010.html"
        }
      ],
      "release_date": "2023-11-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-04-30T10:37:42+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:2126"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2023-42875",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2025-05-15T12:59:19.828000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2366497"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory handling and result in arbitrary code execution.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-42875"
        },
        {
          "category": "external",
          "summary": "RHBZ#2366497",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2366497"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-42875",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-42875"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-42875",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42875"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0004.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0004.html"
        }
      ],
      "release_date": "2025-05-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-04-30T10:37:42+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:2126"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2023-42883",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "discovery_date": "2023-12-13T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2254326"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. This issue exists due to a boundary error when processing a malicious image, which could result in a denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: processing a malicious image may lead to a denial of service",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-42883"
        },
        {
          "category": "external",
          "summary": "RHBZ#2254326",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2254326"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-42883",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-42883"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-42883",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42883"
        }
      ],
      "release_date": "2023-12-12T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-04-30T10:37:42+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:2126"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: processing a malicious image may lead to a denial of service"
    },
    {
      "cve": "CVE-2023-42890",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "discovery_date": "2023-12-13T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2254327"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. This issue exists due to a boundary error when processing malicious HTML content in WebKit, which could result in memory corruption and arbitrary code execution on the target system.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: processing malicious web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "While the discovered flaw in WebKitGTK does indeed present a concerning potential for arbitrary code execution due to memory corruption, its severity is assessed as moderate rather than critical for several reasons. Firstly, successful exploitation of the vulnerability requires the user to interact with malicious HTML content, typically through visiting a compromised website. This dependency on user interaction reduces the likelihood of widespread exploitation compared to vulnerabilities that can be remotely exploited without user interaction. Additionally, the impact of the flaw may be mitigated by various security measures such as sandboxing or Content Security Policy (CSP) enforcement, which can limit the execution environment for potentially malicious code.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-42890"
        },
        {
          "category": "external",
          "summary": "RHBZ#2254327",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2254327"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-42890",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-42890"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-42890",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42890"
        }
      ],
      "release_date": "2023-12-12T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-04-30T10:37:42+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:2126"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: processing malicious web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2023-42917",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "discovery_date": "2023-12-05T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2253058"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content may lead to remote code execution. This vulnerability is known to be actively exploited in the wild and was included in the CISA\u0027s KEV catalog.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Arbitrary Remote Code Execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "All versions of Red Hat Enterprise Linux are affected to this vulnerability. To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content. For this reason, this flaw was rated with an important, and not critical, severity.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-42917"
        },
        {
          "category": "external",
          "summary": "RHBZ#2253058",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2253058"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-42917",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-42917"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-42917",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42917"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2023-0011.html",
          "url": "https://webkitgtk.org/security/WSA-2023-0011.html"
        },
        {
          "category": "external",
          "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
          "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        }
      ],
      "release_date": "2023-12-05T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-04-30T10:37:42+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:2126"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "exploit_status",
          "date": "2023-12-04T00:00:00+00:00",
          "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        },
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Arbitrary Remote Code Execution"
    },
    {
      "cve": "CVE-2023-42970",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2025-05-15T13:01:32.590000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2366498"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in arbitrary code execution.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-42970"
        },
        {
          "category": "external",
          "summary": "RHBZ#2366498",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2366498"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-42970",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-42970"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-42970",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42970"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0004.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0004.html"
        }
      ],
      "release_date": "2025-05-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-04-30T10:37:42+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:2126"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2023-43000",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2025-11-21T12:36:58.206000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2416324"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in memory corruption.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to memory corruption",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause memory corruption and the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-43000"
        },
        {
          "category": "external",
          "summary": "RHBZ#2416324",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2416324"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-43000",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-43000"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-43000",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-43000"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0008.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0008.html"
        },
        {
          "category": "external",
          "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
          "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        }
      ],
      "release_date": "2025-11-20T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-04-30T10:37:42+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:2126"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "exploit_status",
          "date": "2026-03-05T00:00:00+00:00",
          "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        },
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to memory corruption"
    },
    {
      "cve": "CVE-2024-23271",
      "cwe": {
        "id": "CWE-942",
        "name": "Permissive Cross-domain Security Policy with Untrusted Domains"
      },
      "discovery_date": "2024-09-25T15:33:21.499000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2314696"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKit. This flaw allows a remote attacker to trigger unexpected cross-origin behavior via a malicious website.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: A malicious website may cause unexpected cross-origin behavior",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
          "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
          "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-23271"
        },
        {
          "category": "external",
          "summary": "RHBZ#2314696",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314696"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-23271",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-23271"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-23271",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-23271"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0005.html",
          "url": "https://webkitgtk.org/security/WSA-2024-0005.html"
        }
      ],
      "release_date": "2024-09-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-04-30T10:37:42+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:2126"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.src",
            "AppStream-9.4.0.GA:webkit2gtk3-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el9.x86_64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.aarch64",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.i686",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.ppc64le",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.s390x",
            "AppStream-9.4.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el9.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: A malicious website may cause unexpected cross-origin behavior"
    }
  ]
}

RHSA-2024:2982

Vulnerability from csaf_redhat - Published: 2024-05-22 09:34 - Updated: 2026-03-18 02:26

Summary

Red Hat Security Advisory: webkit2gtk3 security update

Severity

Important

Notes

Topic: An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details: WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fix(es): * webkitgtk: use-after-free in the MediaRecorder API of the WebKit GStreamer-based ports (CVE-2023-39928) * webkitgtk: Arbitrary Remote Code Execution (CVE-2023-42917) * webkitgtk: processing a malicious image may lead to a denial of service (CVE-2023-42883) * webkitgtk: processing malicious web content may lead to arbitrary code execution (CVE-2023-42890) * webkitgtk: Processing web content may lead to arbitrary code execution (CVE-2023-40414) * webkitgtk: Processing a file may lead to a denial of service or potentially disclose memory contents (CVE-2014-1745) * webkitgtk: User password may be read aloud by a text-to-speech accessibility feature (CVE-2023-32359) * webkitgtk: Processing web content may lead to a denial of service (CVE-2023-41983) * webkitgtk: Processing web content may lead to arbitrary code execution (CVE-2023-42852) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 8 Release Notes linked from the References section.

CVE-2014-1745

7.1 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:L

CWE-400 - Uncontrolled Resource Consumption

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2023-32359

A flaw was found in webkitgtk where a user’s password may be read aloud by a text-to-speech accessibility feature.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2023-39928

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2023-40414

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2023-41983

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2023-42852

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2023-42875

A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory handling and result in arbitrary code execution.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2023-42883

A flaw was found in WebKitGTK. This issue exists due to a boundary error when processing a malicious image, which could result in a denial of service.

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE-20 - Improper Input Validation

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2023-42890

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-20 - Improper Input Validation

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2023-42917

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-787 - Out-of-bounds Write

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround

Threats

Exploit Status CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog

Impact Important

CVE-2023-42970

A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in arbitrary code execution.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2023-43000

A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in memory corruption.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64	—	Vendor Fix fix Workaround

Threats

Exploit Status CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog

Impact Important

References

69 references

URL	Category
https://access.redhat.com/errata/RHSA-2024:2982	self
https://docs.redhat.com/en/documentation/red_hat_…	external
https://access.redhat.com/security/updates/classi…	external
https://bugzilla.redhat.com/show_bug.cgi?id=2241400	external
https://bugzilla.redhat.com/show_bug.cgi?id=2253058	external
https://bugzilla.redhat.com/show_bug.cgi?id=2254326	external
https://bugzilla.redhat.com/show_bug.cgi?id=2254327	external
https://bugzilla.redhat.com/show_bug.cgi?id=2270143	external
https://bugzilla.redhat.com/show_bug.cgi?id=2270151	external
https://bugzilla.redhat.com/show_bug.cgi?id=2271449	external
https://bugzilla.redhat.com/show_bug.cgi?id=2271453	external
https://bugzilla.redhat.com/show_bug.cgi?id=2271456	external
https://issues.redhat.com/browse/RHEL-3961	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2014-1745	self
https://bugzilla.redhat.com/show_bug.cgi?id=2270151	external
https://www.cve.org/CVERecord?id=CVE-2014-1745	external
https://nvd.nist.gov/vuln/detail/CVE-2014-1745	external
https://webkitgtk.org/security/WSA-2024-0001.html	external
https://access.redhat.com/security/cve/CVE-2023-32359	self
https://bugzilla.redhat.com/show_bug.cgi?id=2271449	external
https://www.cve.org/CVERecord?id=CVE-2023-32359	external
https://nvd.nist.gov/vuln/detail/CVE-2023-32359	external
https://webkitgtk.org/security/WSA-2023-0010.html	external
https://access.redhat.com/security/cve/CVE-2023-39928	self
https://bugzilla.redhat.com/show_bug.cgi?id=2241400	external
https://www.cve.org/CVERecord?id=CVE-2023-39928	external
https://nvd.nist.gov/vuln/detail/CVE-2023-39928	external
https://webkitgtk.org/security/WSA-2023-0009.html	external
https://access.redhat.com/security/cve/CVE-2023-40414	self
https://bugzilla.redhat.com/show_bug.cgi?id=2270143	external
https://www.cve.org/CVERecord?id=CVE-2023-40414	external
https://nvd.nist.gov/vuln/detail/CVE-2023-40414	external
https://access.redhat.com/security/cve/CVE-2023-41983	self
https://bugzilla.redhat.com/show_bug.cgi?id=2271453	external
https://www.cve.org/CVERecord?id=CVE-2023-41983	external
https://nvd.nist.gov/vuln/detail/CVE-2023-41983	external
https://access.redhat.com/security/cve/CVE-2023-42852	self
https://bugzilla.redhat.com/show_bug.cgi?id=2271456	external
https://www.cve.org/CVERecord?id=CVE-2023-42852	external
https://nvd.nist.gov/vuln/detail/CVE-2023-42852	external
https://access.redhat.com/security/cve/CVE-2023-42875	self
https://bugzilla.redhat.com/show_bug.cgi?id=2366497	external
https://www.cve.org/CVERecord?id=CVE-2023-42875	external
https://nvd.nist.gov/vuln/detail/CVE-2023-42875	external
https://webkitgtk.org/security/WSA-2025-0004.html	external
https://access.redhat.com/security/cve/CVE-2023-42883	self
https://bugzilla.redhat.com/show_bug.cgi?id=2254326	external
https://www.cve.org/CVERecord?id=CVE-2023-42883	external
https://nvd.nist.gov/vuln/detail/CVE-2023-42883	external
https://access.redhat.com/security/cve/CVE-2023-42890	self
https://bugzilla.redhat.com/show_bug.cgi?id=2254327	external
https://www.cve.org/CVERecord?id=CVE-2023-42890	external
https://nvd.nist.gov/vuln/detail/CVE-2023-42890	external
https://access.redhat.com/security/cve/CVE-2023-42917	self
https://bugzilla.redhat.com/show_bug.cgi?id=2253058	external
https://www.cve.org/CVERecord?id=CVE-2023-42917	external
https://nvd.nist.gov/vuln/detail/CVE-2023-42917	external
https://webkitgtk.org/security/WSA-2023-0011.html	external
https://www.cisa.gov/known-exploited-vulnerabilit…	external
https://access.redhat.com/security/cve/CVE-2023-42970	self
https://bugzilla.redhat.com/show_bug.cgi?id=2366498	external
https://www.cve.org/CVERecord?id=CVE-2023-42970	external
https://nvd.nist.gov/vuln/detail/CVE-2023-42970	external
https://access.redhat.com/security/cve/CVE-2023-43000	self
https://bugzilla.redhat.com/show_bug.cgi?id=2416324	external
https://www.cve.org/CVERecord?id=CVE-2023-43000	external
https://nvd.nist.gov/vuln/detail/CVE-2023-43000	external
https://webkitgtk.org/security/WSA-2025-0008.html	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform.\n\nSecurity Fix(es):\n\n* webkitgtk: use-after-free in the MediaRecorder API of the WebKit GStreamer-based ports (CVE-2023-39928)\n\n* webkitgtk: Arbitrary Remote Code Execution (CVE-2023-42917)\n\n* webkitgtk: processing a malicious image may lead to a denial of service (CVE-2023-42883)\n\n* webkitgtk: processing malicious web content may lead to arbitrary code execution (CVE-2023-42890)\n\n* webkitgtk: Processing web content may lead to arbitrary code execution (CVE-2023-40414)\n\n* webkitgtk: Processing a file may lead to a denial of service or potentially disclose memory contents (CVE-2014-1745)\n\n* webkitgtk: User password may be read aloud by a text-to-speech accessibility feature (CVE-2023-32359)\n\n* webkitgtk: Processing web content may lead to a denial of service (CVE-2023-41983)\n\n* webkitgtk: Processing web content may lead to arbitrary code execution (CVE-2023-42852)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 8 Release Notes linked from the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2024:2982",
        "url": "https://access.redhat.com/errata/RHSA-2024:2982"
      },
      {
        "category": "external",
        "summary": "https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/8/html/8.10_release_notes/index",
        "url": "https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/8/html/8.10_release_notes/index"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2241400",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2241400"
      },
      {
        "category": "external",
        "summary": "2253058",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2253058"
      },
      {
        "category": "external",
        "summary": "2254326",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2254326"
      },
      {
        "category": "external",
        "summary": "2254327",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2254327"
      },
      {
        "category": "external",
        "summary": "2270143",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270143"
      },
      {
        "category": "external",
        "summary": "2270151",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270151"
      },
      {
        "category": "external",
        "summary": "2271449",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271449"
      },
      {
        "category": "external",
        "summary": "2271453",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271453"
      },
      {
        "category": "external",
        "summary": "2271456",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271456"
      },
      {
        "category": "external",
        "summary": "RHEL-3961",
        "url": "https://issues.redhat.com/browse/RHEL-3961"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_2982.json"
      }
    ],
    "title": "Red Hat Security Advisory: webkit2gtk3 security update",
    "tracking": {
      "current_release_date": "2026-03-18T02:26:36+00:00",
      "generator": {
        "date": "2026-03-18T02:26:36+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.7.3"
        }
      },
      "id": "RHSA-2024:2982",
      "initial_release_date": "2024-05-22T09:34:54+00:00",
      "revision_history": [
        {
          "date": "2024-05-22T09:34:54+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2025-02-26T07:41:10+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-03-18T02:26:36+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream (v. 8)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream (v. 8)",
                  "product_id": "AppStream-8.10.0.GA",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:enterprise_linux:8::appstream"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.42.5-1.el8.src",
                "product": {
                  "name": "webkit2gtk3-0:2.42.5-1.el8.src",
                  "product_id": "webkit2gtk3-0:2.42.5-1.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.42.5-1.el8?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.42.5-1.el8.aarch64",
                "product": {
                  "name": "webkit2gtk3-0:2.42.5-1.el8.aarch64",
                  "product_id": "webkit2gtk3-0:2.42.5-1.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.42.5-1.el8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
                  "product_id": "webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.42.5-1.el8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
                  "product_id": "webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.42.5-1.el8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.42.5-1.el8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
                  "product_id": "webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.42.5-1.el8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
                  "product_id": "webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.42.5-1.el8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.42.5-1.el8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.42.5-1.el8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.42.5-1.el8?arch=aarch64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.42.5-1.el8.ppc64le",
                "product": {
                  "name": "webkit2gtk3-0:2.42.5-1.el8.ppc64le",
                  "product_id": "webkit2gtk3-0:2.42.5-1.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.42.5-1.el8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
                  "product_id": "webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.42.5-1.el8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
                  "product_id": "webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.42.5-1.el8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.42.5-1.el8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
                  "product_id": "webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.42.5-1.el8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
                  "product_id": "webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.42.5-1.el8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.42.5-1.el8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.42.5-1.el8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.42.5-1.el8?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.42.5-1.el8.i686",
                "product": {
                  "name": "webkit2gtk3-0:2.42.5-1.el8.i686",
                  "product_id": "webkit2gtk3-0:2.42.5-1.el8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.42.5-1.el8?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.42.5-1.el8.i686",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.42.5-1.el8.i686",
                  "product_id": "webkit2gtk3-devel-0:2.42.5-1.el8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.42.5-1.el8?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
                  "product_id": "webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.42.5-1.el8?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.42.5-1.el8?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
                  "product_id": "webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.42.5-1.el8?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
                  "product_id": "webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.42.5-1.el8?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.42.5-1.el8?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.42.5-1.el8?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.42.5-1.el8?arch=i686"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i686"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.42.5-1.el8.x86_64",
                "product": {
                  "name": "webkit2gtk3-0:2.42.5-1.el8.x86_64",
                  "product_id": "webkit2gtk3-0:2.42.5-1.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.42.5-1.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
                  "product_id": "webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.42.5-1.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
                  "product_id": "webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.42.5-1.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.42.5-1.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
                  "product_id": "webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.42.5-1.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
                  "product_id": "webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.42.5-1.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.42.5-1.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.42.5-1.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.42.5-1.el8?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.42.5-1.el8.s390x",
                "product": {
                  "name": "webkit2gtk3-0:2.42.5-1.el8.s390x",
                  "product_id": "webkit2gtk3-0:2.42.5-1.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.42.5-1.el8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
                  "product_id": "webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.42.5-1.el8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
                  "product_id": "webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.42.5-1.el8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.42.5-1.el8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
                  "product_id": "webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.42.5-1.el8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
                  "product_id": "webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.42.5-1.el8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.42.5-1.el8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.42.5-1.el8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.42.5-1.el8?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.42.5-1.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64"
        },
        "product_reference": "webkit2gtk3-0:2.42.5-1.el8.aarch64",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.42.5-1.el8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686"
        },
        "product_reference": "webkit2gtk3-0:2.42.5-1.el8.i686",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.42.5-1.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le"
        },
        "product_reference": "webkit2gtk3-0:2.42.5-1.el8.ppc64le",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.42.5-1.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x"
        },
        "product_reference": "webkit2gtk3-0:2.42.5-1.el8.s390x",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.42.5-1.el8.src as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src"
        },
        "product_reference": "webkit2gtk3-0:2.42.5-1.el8.src",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.42.5-1.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64"
        },
        "product_reference": "webkit2gtk3-0:2.42.5-1.el8.x86_64",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.42.5-1.el8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.42.5-1.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64"
        },
        "product_reference": "webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.42.5-1.el8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686"
        },
        "product_reference": "webkit2gtk3-devel-0:2.42.5-1.el8.i686",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le"
        },
        "product_reference": "webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.42.5-1.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x"
        },
        "product_reference": "webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.42.5-1.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.42.5-1.el8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.42.5-1.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64",
        "relates_to_product_reference": "AppStream-8.10.0.GA"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2014-1745",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "discovery_date": "2024-03-18T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2270151"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A use-after-free vulnerability was found in the SVG implementation within WebKitGTK. This flaw allows remote attackers to exploit the removal of an SVGFontFaceElement object, which occurs through specific vectors that trigger the deletion of the object during rendering.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing a file may lead to a denial of service or potentially disclose memory contents",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2014-1745"
        },
        {
          "category": "external",
          "summary": "RHBZ#2270151",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270151"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2014-1745",
          "url": "https://www.cve.org/CVERecord?id=CVE-2014-1745"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-1745",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-1745"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0001.html",
          "url": "https://webkitgtk.org/security/WSA-2024-0001.html"
        }
      ],
      "release_date": "2024-02-05T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-05-22T09:34:54+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:2982"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: Processing a file may lead to a denial of service or potentially disclose memory contents"
    },
    {
      "cve": "CVE-2023-32359",
      "discovery_date": "2024-03-25T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2271449"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in webkitgtk where a user\u2019s password may be read aloud by a text-to-speech accessibility feature.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: User password may be read aloud by a text-to-speech accessibility feature",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-32359"
        },
        {
          "category": "external",
          "summary": "RHBZ#2271449",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271449"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-32359",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-32359"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-32359",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-32359"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2023-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2023-0010.html"
        }
      ],
      "release_date": "2023-11-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-05-22T09:34:54+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:2982"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: User password may be read aloud by a text-to-speech accessibility feature"
    },
    {
      "cve": "CVE-2023-39928",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2023-09-28T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2241400"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A use-after-free vulnerability was found in the WebKitGTK\u0027s MediaRecorder API that may lead to memory corruption and Remote Code Execution. The victim needs to access a malicious web page to trigger this vulnerability.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: use-after-free in the MediaRecorder API of the WebKit GStreamer-based ports",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-39928"
        },
        {
          "category": "external",
          "summary": "RHBZ#2241400",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2241400"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-39928",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-39928"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-39928",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39928"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2023-0009.html",
          "url": "https://webkitgtk.org/security/WSA-2023-0009.html"
        }
      ],
      "release_date": "2023-09-28T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-05-22T09:34:54+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:2982"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: use-after-free in the MediaRecorder API of the WebKit GStreamer-based ports"
    },
    {
      "cve": "CVE-2023-40414",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2024-03-18T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2270143"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability in WebKitGTK and WPE WebKit could allow an attacker to execute arbitrary code on a target system. The issue arises from a use-after-free flaw in memory management when processing web content. This flaw can potentially give attackers the ability to take control of affected systems.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated Imporatant because it affects the confidentiality, integrity, and availability (CIA) of systems, with a high severity rating.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-40414"
        },
        {
          "category": "external",
          "summary": "RHBZ#2270143",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270143"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-40414",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-40414"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-40414",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-40414"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0001.html",
          "url": "https://webkitgtk.org/security/WSA-2024-0001.html"
        }
      ],
      "release_date": "2024-02-05T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-05-22T09:34:54+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:2982"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2023-41983",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2024-03-25T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2271453"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability in WebKitGTK and WPE WebKit may result in a denial-of-service when processing web content. This issue arises from improper memory handling, which could be exploited by attackers to crash the affected systems.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing web content may lead to a denial of service",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-41983"
        },
        {
          "category": "external",
          "summary": "RHBZ#2271453",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271453"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-41983",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-41983"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-41983",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-41983"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2023-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2023-0010.html"
        }
      ],
      "release_date": "2023-11-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-05-22T09:34:54+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:2982"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: Processing web content may lead to a denial of service"
    },
    {
      "cve": "CVE-2023-42852",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2024-03-25T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2271456"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKitGTK and WPE WebKit, which allows remote attacker to perform arbitrary code execution when processing web content. This vulnerability caused by insufficient checks, which could be exploited by attackers to execute malicious code on affected systems.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated important because it affects the confidentiality, integrity, and availability (CIA) of systems, with a high severity rating.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-42852"
        },
        {
          "category": "external",
          "summary": "RHBZ#2271456",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271456"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-42852",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-42852"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-42852",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42852"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2023-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2023-0010.html"
        }
      ],
      "release_date": "2023-11-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-05-22T09:34:54+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:2982"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2023-42875",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2025-05-15T12:59:19.828000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2366497"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory handling and result in arbitrary code execution.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-42875"
        },
        {
          "category": "external",
          "summary": "RHBZ#2366497",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2366497"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-42875",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-42875"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-42875",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42875"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0004.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0004.html"
        }
      ],
      "release_date": "2025-05-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-05-22T09:34:54+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:2982"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2023-42883",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "discovery_date": "2023-12-13T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2254326"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. This issue exists due to a boundary error when processing a malicious image, which could result in a denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: processing a malicious image may lead to a denial of service",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-42883"
        },
        {
          "category": "external",
          "summary": "RHBZ#2254326",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2254326"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-42883",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-42883"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-42883",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42883"
        }
      ],
      "release_date": "2023-12-12T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-05-22T09:34:54+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:2982"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: processing a malicious image may lead to a denial of service"
    },
    {
      "cve": "CVE-2023-42890",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "discovery_date": "2023-12-13T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2254327"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. This issue exists due to a boundary error when processing malicious HTML content in WebKit, which could result in memory corruption and arbitrary code execution on the target system.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: processing malicious web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "While the discovered flaw in WebKitGTK does indeed present a concerning potential for arbitrary code execution due to memory corruption, its severity is assessed as moderate rather than critical for several reasons. Firstly, successful exploitation of the vulnerability requires the user to interact with malicious HTML content, typically through visiting a compromised website. This dependency on user interaction reduces the likelihood of widespread exploitation compared to vulnerabilities that can be remotely exploited without user interaction. Additionally, the impact of the flaw may be mitigated by various security measures such as sandboxing or Content Security Policy (CSP) enforcement, which can limit the execution environment for potentially malicious code.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-42890"
        },
        {
          "category": "external",
          "summary": "RHBZ#2254327",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2254327"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-42890",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-42890"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-42890",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42890"
        }
      ],
      "release_date": "2023-12-12T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-05-22T09:34:54+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:2982"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: processing malicious web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2023-42917",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "discovery_date": "2023-12-05T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2253058"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content may lead to remote code execution. This vulnerability is known to be actively exploited in the wild and was included in the CISA\u0027s KEV catalog.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Arbitrary Remote Code Execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "All versions of Red Hat Enterprise Linux are affected to this vulnerability. To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content. For this reason, this flaw was rated with an important, and not critical, severity.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-42917"
        },
        {
          "category": "external",
          "summary": "RHBZ#2253058",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2253058"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-42917",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-42917"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-42917",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42917"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2023-0011.html",
          "url": "https://webkitgtk.org/security/WSA-2023-0011.html"
        },
        {
          "category": "external",
          "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
          "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        }
      ],
      "release_date": "2023-12-05T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-05-22T09:34:54+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:2982"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "exploit_status",
          "date": "2023-12-04T00:00:00+00:00",
          "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        },
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Arbitrary Remote Code Execution"
    },
    {
      "cve": "CVE-2023-42970",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2025-05-15T13:01:32.590000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2366498"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in arbitrary code execution.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-42970"
        },
        {
          "category": "external",
          "summary": "RHBZ#2366498",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2366498"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-42970",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-42970"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-42970",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42970"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0004.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0004.html"
        }
      ],
      "release_date": "2025-05-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-05-22T09:34:54+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:2982"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2023-43000",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2025-11-21T12:36:58.206000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2416324"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in memory corruption.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to memory corruption",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause memory corruption and the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
          "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
          "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-43000"
        },
        {
          "category": "external",
          "summary": "RHBZ#2416324",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2416324"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-43000",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-43000"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-43000",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-43000"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0008.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0008.html"
        },
        {
          "category": "external",
          "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
          "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        }
      ],
      "release_date": "2025-11-20T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-05-22T09:34:54+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:2982"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.src",
            "AppStream-8.10.0.GA:webkit2gtk3-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-debugsource-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-devel-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-debuginfo-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-0:2.42.5-1.el8.x86_64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.aarch64",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.i686",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.ppc64le",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.s390x",
            "AppStream-8.10.0.GA:webkit2gtk3-jsc-devel-debuginfo-0:2.42.5-1.el8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "exploit_status",
          "date": "2026-03-05T00:00:00+00:00",
          "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        },
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to memory corruption"
    }
  ]
}

RHSA-2024:8492

Vulnerability from csaf_redhat - Published: 2024-10-28 00:58 - Updated: 2026-04-13 08:44

Summary

Red Hat Security Advisory: webkit2gtk3 security update

Severity

Important

Notes

Topic: An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details: WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fix(es): * webkitgtk: Memory corruption issue when processing web content (CVE-2022-32885) * webkitgtk: arbitrary javascript code execution (CVE-2023-40397) * webkitgtk: Arbitrary Remote Code Execution (CVE-2023-42917) * webkitgtk: Processing web content may lead to arbitrary code execution (CVE-2023-42852) * chromium-browser: Use after free in ANGLE (CVE-2024-4558) * webkitgtk: webkit2gtk: Use after free may lead to Remote Code Execution (CVE-2024-40776) * webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2024-40789) * webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking (CVE-2024-40780) * webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking (CVE-2024-40779) * webkitgtk: webkit2gtk: Use-after-free was addressed with improved memory management (CVE-2024-40782) * webkitgtk: Processing web content may lead to arbitrary code execution (CVE-2024-27820) * webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution (CVE-2024-27851) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2022-32885

A vulnerability was found in WebKitGTK. This security issue occurs when processing maliciously crafted web content that may lead to arbitrary code execution. This memory corruption issue was addressed with improved validation.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-20 - Improper Input Validation

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2023-40397

A vulnerability was found in WebKit. This flaw allows a remote attacker to cause arbitrary javascript code execution.

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-96 - Improper Neutralization of Directives in Statically Saved Code ('Static Code Injection')

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2023-42852

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2023-42875

A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory handling and result in arbitrary code execution.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2023-42917

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-787 - Out-of-bounds Write

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround

Threats

Exploit Status CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog

Impact Important

CVE-2023-42970

A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in arbitrary code execution.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2023-43000

A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in memory corruption.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround

Threats

Exploit Status CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog

Impact Important

CVE-2023-43010

A flaw was found in WebKitGTK. Processing malicious web content can cause memory corruption due to improper memory handling.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-120 - Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2024-4558

There's a flaw in the Angle package where processing maliciously crafted web content may lead to a use-after-free. A remote attacker may leverage that to exploit heap corruption related bugs, such as crashing the application or remote code execution.

7.0 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2024-27820

A vulnerability was found in WebKit. This flaw allows a remote attacker to perform arbitrary code execution when processing web content. This flaw is caused by insufficient memory handling, which attackers could exploit to execute malicious code on affected systems.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2024-27851

A vulnerability was found in WebKit. This flaw allows a remote attacker to perform arbitrary code execution when processing web content. This flaw is caused by insufficient bounds checks, which could be exploited by attackers to execute malicious code on affected systems.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2024-27856

A flaw was found in WebKitGTK. Processing malicious web content can cause unexpected app termination or arbitrary code execution due to improper checks.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-94 - Improper Control of Generation of Code ('Code Injection')

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2024-40776

A vulnerability was found in WebKitGTK. A use-after-free may lead to Remote Code Execution. Users are advised to avoid processing untrusted web content in WebKitGTK.

4.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2024-40779

A flaw was found in WebKitGTK. Processing malicious web content can trigger an out-of-bounds read due to improper bounds checking, causing an unexpected process crash, resulting in a denial of service.

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE-125 - Out-of-bounds Read

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2024-40780

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE-125 - Out-of-bounds Read

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2024-40782

A flaw was found in WebKitGTK. Processing malicious web content can trigger a use-after-free issue due to improper bounds checking, causing an unexpected process crash, resulting in a denial of service.

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE-416 - Use After Free

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2024-40789

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE-125 - Out-of-bounds Read

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2024-54534

A flaw was found in WebKitGTK. Processing malicious web content can cause memory corruption due to improper memory handling.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-787 - Out-of-bounds Write

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2025-43480

A flaw was found in WebKitGTK. A malicious website may exfiltrate data cross-origin due to improper checks.

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

References

119 references

URL	Category
https://access.redhat.com/errata/RHSA-2024:8492	self
https://access.redhat.com/security/updates/classi…	external
https://bugzilla.redhat.com/show_bug.cgi?id=2236842	external
https://bugzilla.redhat.com/show_bug.cgi?id=2238945	external
https://bugzilla.redhat.com/show_bug.cgi?id=2253058	external
https://bugzilla.redhat.com/show_bug.cgi?id=2271456	external
https://bugzilla.redhat.com/show_bug.cgi?id=2279689	external
https://bugzilla.redhat.com/show_bug.cgi?id=2301841	external
https://bugzilla.redhat.com/show_bug.cgi?id=2302067	external
https://bugzilla.redhat.com/show_bug.cgi?id=2302069	external
https://bugzilla.redhat.com/show_bug.cgi?id=2302070	external
https://bugzilla.redhat.com/show_bug.cgi?id=2302071	external
https://bugzilla.redhat.com/show_bug.cgi?id=2314698	external
https://bugzilla.redhat.com/show_bug.cgi?id=2314704	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2022-32885	self
https://bugzilla.redhat.com/show_bug.cgi?id=2236842	external
https://www.cve.org/CVERecord?id=CVE-2022-32885	external
https://nvd.nist.gov/vuln/detail/CVE-2022-32885	external
https://webkitgtk.org/security/WSA-2023-0003.html	external
https://access.redhat.com/security/cve/CVE-2023-40397	self
https://bugzilla.redhat.com/show_bug.cgi?id=2238945	external
https://www.cve.org/CVERecord?id=CVE-2023-40397	external
https://nvd.nist.gov/vuln/detail/CVE-2023-40397	external
https://wpewebkit.org/security/WSA-2023-0008.html	external
https://access.redhat.com/security/cve/CVE-2023-42852	self
https://bugzilla.redhat.com/show_bug.cgi?id=2271456	external
https://www.cve.org/CVERecord?id=CVE-2023-42852	external
https://nvd.nist.gov/vuln/detail/CVE-2023-42852	external
https://webkitgtk.org/security/WSA-2023-0010.html	external
https://access.redhat.com/security/cve/CVE-2023-42875	self
https://bugzilla.redhat.com/show_bug.cgi?id=2366497	external
https://www.cve.org/CVERecord?id=CVE-2023-42875	external
https://nvd.nist.gov/vuln/detail/CVE-2023-42875	external
https://webkitgtk.org/security/WSA-2025-0004.html	external
https://access.redhat.com/security/cve/CVE-2023-42917	self
https://bugzilla.redhat.com/show_bug.cgi?id=2253058	external
https://www.cve.org/CVERecord?id=CVE-2023-42917	external
https://nvd.nist.gov/vuln/detail/CVE-2023-42917	external
https://webkitgtk.org/security/WSA-2023-0011.html	external
https://www.cisa.gov/known-exploited-vulnerabilit…	external
https://access.redhat.com/security/cve/CVE-2023-42970	self
https://bugzilla.redhat.com/show_bug.cgi?id=2366498	external
https://www.cve.org/CVERecord?id=CVE-2023-42970	external
https://nvd.nist.gov/vuln/detail/CVE-2023-42970	external
https://access.redhat.com/security/cve/CVE-2023-43000	self
https://bugzilla.redhat.com/show_bug.cgi?id=2416324	external
https://www.cve.org/CVERecord?id=CVE-2023-43000	external
https://nvd.nist.gov/vuln/detail/CVE-2023-43000	external
https://webkitgtk.org/security/WSA-2025-0008.html	external
https://access.redhat.com/security/cve/CVE-2023-43010	self
https://bugzilla.redhat.com/show_bug.cgi?id=2448778	external
https://www.cve.org/CVERecord?id=CVE-2023-43010	external
https://nvd.nist.gov/vuln/detail/CVE-2023-43010	external
https://webkitgtk.org/security/WSA-2026-0001.html	external
https://access.redhat.com/security/cve/CVE-2024-4558	self
https://bugzilla.redhat.com/show_bug.cgi?id=2279689	external
https://www.cve.org/CVERecord?id=CVE-2024-4558	external
https://nvd.nist.gov/vuln/detail/CVE-2024-4558	external
https://access.redhat.com/security/cve/CVE-2024-27820	self
https://bugzilla.redhat.com/show_bug.cgi?id=2314698	external
https://www.cve.org/CVERecord?id=CVE-2024-27820	external
https://nvd.nist.gov/vuln/detail/CVE-2024-27820	external
https://webkitgtk.org/security/WSA-2024-0005.html	external
https://access.redhat.com/security/cve/CVE-2024-27851	self
https://bugzilla.redhat.com/show_bug.cgi?id=2314704	external
https://www.cve.org/CVERecord?id=CVE-2024-27851	external
https://nvd.nist.gov/vuln/detail/CVE-2024-27851	external
https://access.redhat.com/security/cve/CVE-2024-27856	self
https://bugzilla.redhat.com/show_bug.cgi?id=2344618	external
https://www.cve.org/CVERecord?id=CVE-2024-27856	external
https://nvd.nist.gov/vuln/detail/CVE-2024-27856	external
https://support.apple.com/en-us/120896	external
https://support.apple.com/en-us/120898	external
https://support.apple.com/en-us/120901	external
https://support.apple.com/en-us/120902	external
https://support.apple.com/en-us/120903	external
https://support.apple.com/en-us/120905	external
https://support.apple.com/en-us/120906	external
https://webkitgtk.org/security/WSA-2025-0001.html	external
https://access.redhat.com/security/cve/CVE-2024-40776	self
https://bugzilla.redhat.com/show_bug.cgi?id=2301841	external
https://www.cve.org/CVERecord?id=CVE-2024-40776	external
https://nvd.nist.gov/vuln/detail/CVE-2024-40776	external
https://webkitgtk.org/security/WSA-2024-0004.html	external
https://access.redhat.com/security/cve/CVE-2024-40779	self
https://bugzilla.redhat.com/show_bug.cgi?id=2302070	external
https://www.cve.org/CVERecord?id=CVE-2024-40779	external
https://nvd.nist.gov/vuln/detail/CVE-2024-40779	external
https://webkitgtk.org/security/WSA-2024-0004.html…	external
https://access.redhat.com/security/cve/CVE-2024-40780	self
https://bugzilla.redhat.com/show_bug.cgi?id=2302069	external
https://www.cve.org/CVERecord?id=CVE-2024-40780	external
https://nvd.nist.gov/vuln/detail/CVE-2024-40780	external
https://webkitgtk.org/security/WSA-2024-0004.html…	external
https://access.redhat.com/security/cve/CVE-2024-40782	self
https://bugzilla.redhat.com/show_bug.cgi?id=2302071	external
https://www.cve.org/CVERecord?id=CVE-2024-40782	external
https://nvd.nist.gov/vuln/detail/CVE-2024-40782	external
https://webkitgtk.org/security/WSA-2024-0004.html…	external
https://access.redhat.com/security/cve/CVE-2024-40789	self
https://bugzilla.redhat.com/show_bug.cgi?id=2302067	external
https://www.cve.org/CVERecord?id=CVE-2024-40789	external
https://nvd.nist.gov/vuln/detail/CVE-2024-40789	external
https://webkitgtk.org/security/WSA-2024-0004.html…	external
https://access.redhat.com/security/cve/CVE-2024-54534	self
https://bugzilla.redhat.com/show_bug.cgi?id=2333846	external
https://www.cve.org/CVERecord?id=CVE-2024-54534	external
https://nvd.nist.gov/vuln/detail/CVE-2024-54534	external
https://support.apple.com/en-us/121837	external
https://support.apple.com/en-us/121839	external
https://support.apple.com/en-us/121843	external
https://support.apple.com/en-us/121844	external
https://support.apple.com/en-us/121845	external
https://support.apple.com/en-us/121846	external
https://access.redhat.com/security/cve/CVE-2025-43480	self
https://bugzilla.redhat.com/show_bug.cgi?id=2416338	external
https://www.cve.org/CVERecord?id=CVE-2025-43480	external
https://nvd.nist.gov/vuln/detail/CVE-2025-43480	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 9.2 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform.\n\nSecurity Fix(es):\n\n* webkitgtk: Memory corruption issue when processing web content (CVE-2022-32885)\n\n* webkitgtk: arbitrary javascript code execution (CVE-2023-40397)\n\n* webkitgtk: Arbitrary Remote Code Execution (CVE-2023-42917)\n\n* webkitgtk: Processing web content may lead to arbitrary code execution (CVE-2023-42852)\n\n* chromium-browser: Use after free in ANGLE (CVE-2024-4558)\n\n* webkitgtk: webkit2gtk: Use after free may lead to Remote Code Execution (CVE-2024-40776)\n\n* webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2024-40789)\n\n* webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking (CVE-2024-40780)\n\n* webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking (CVE-2024-40779)\n\n* webkitgtk: webkit2gtk: Use-after-free was addressed with improved memory management (CVE-2024-40782)\n\n* webkitgtk: Processing web content may lead to arbitrary code execution (CVE-2024-27820)\n\n* webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution (CVE-2024-27851)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2024:8492",
        "url": "https://access.redhat.com/errata/RHSA-2024:8492"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2236842",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2236842"
      },
      {
        "category": "external",
        "summary": "2238945",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2238945"
      },
      {
        "category": "external",
        "summary": "2253058",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2253058"
      },
      {
        "category": "external",
        "summary": "2271456",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271456"
      },
      {
        "category": "external",
        "summary": "2279689",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279689"
      },
      {
        "category": "external",
        "summary": "2301841",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2301841"
      },
      {
        "category": "external",
        "summary": "2302067",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302067"
      },
      {
        "category": "external",
        "summary": "2302069",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302069"
      },
      {
        "category": "external",
        "summary": "2302070",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302070"
      },
      {
        "category": "external",
        "summary": "2302071",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302071"
      },
      {
        "category": "external",
        "summary": "2314698",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314698"
      },
      {
        "category": "external",
        "summary": "2314704",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314704"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_8492.json"
      }
    ],
    "title": "Red Hat Security Advisory: webkit2gtk3 security update",
    "tracking": {
      "current_release_date": "2026-04-13T08:44:39+00:00",
      "generator": {
        "date": "2026-04-13T08:44:39+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.7.5"
        }
      },
      "id": "RHSA-2024:8492",
      "initial_release_date": "2024-10-28T00:58:43+00:00",
      "revision_history": [
        {
          "date": "2024-10-28T00:58:43+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2024-10-28T00:58:43+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-04-13T08:44:39+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream EUS (v.9.2)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream EUS (v.9.2)",
                  "product_id": "AppStream-9.2.0.Z.EUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_eus:9.2::appstream"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.46.1-1.el9_2.src",
                "product": {
                  "name": "webkit2gtk3-0:2.46.1-1.el9_2.src",
                  "product_id": "webkit2gtk3-0:2.46.1-1.el9_2.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.46.1-1.el9_2?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
                "product": {
                  "name": "webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
                  "product_id": "webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.46.1-1.el9_2?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
                  "product_id": "webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.46.1-1.el9_2?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
                  "product_id": "webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.46.1-1.el9_2?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.46.1-1.el9_2?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
                  "product_id": "webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.46.1-1.el9_2?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
                  "product_id": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.46.1-1.el9_2?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.46.1-1.el9_2?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.46.1-1.el9_2?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.46.1-1.el9_2?arch=aarch64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
                "product": {
                  "name": "webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
                  "product_id": "webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.46.1-1.el9_2?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
                  "product_id": "webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.46.1-1.el9_2?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
                  "product_id": "webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.46.1-1.el9_2?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.46.1-1.el9_2?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
                  "product_id": "webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.46.1-1.el9_2?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
                  "product_id": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.46.1-1.el9_2?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.46.1-1.el9_2?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.46.1-1.el9_2?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.46.1-1.el9_2?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.46.1-1.el9_2.i686",
                "product": {
                  "name": "webkit2gtk3-0:2.46.1-1.el9_2.i686",
                  "product_id": "webkit2gtk3-0:2.46.1-1.el9_2.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.46.1-1.el9_2?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
                  "product_id": "webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.46.1-1.el9_2?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
                  "product_id": "webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.46.1-1.el9_2?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.46.1-1.el9_2?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
                  "product_id": "webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.46.1-1.el9_2?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
                  "product_id": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.46.1-1.el9_2?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.46.1-1.el9_2?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.46.1-1.el9_2?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.46.1-1.el9_2?arch=i686"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i686"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
                "product": {
                  "name": "webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
                  "product_id": "webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.46.1-1.el9_2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
                  "product_id": "webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.46.1-1.el9_2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
                  "product_id": "webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.46.1-1.el9_2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.46.1-1.el9_2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
                  "product_id": "webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.46.1-1.el9_2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
                  "product_id": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.46.1-1.el9_2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.46.1-1.el9_2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.46.1-1.el9_2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.46.1-1.el9_2?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.46.1-1.el9_2.s390x",
                "product": {
                  "name": "webkit2gtk3-0:2.46.1-1.el9_2.s390x",
                  "product_id": "webkit2gtk3-0:2.46.1-1.el9_2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.46.1-1.el9_2?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
                  "product_id": "webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.46.1-1.el9_2?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
                  "product_id": "webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.46.1-1.el9_2?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.46.1-1.el9_2?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
                  "product_id": "webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.46.1-1.el9_2?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
                  "product_id": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.46.1-1.el9_2?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.46.1-1.el9_2?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.46.1-1.el9_2?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.46.1-1.el9_2?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.46.1-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64"
        },
        "product_reference": "webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.46.1-1.el9_2.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686"
        },
        "product_reference": "webkit2gtk3-0:2.46.1-1.el9_2.i686",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.46.1-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le"
        },
        "product_reference": "webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.46.1-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x"
        },
        "product_reference": "webkit2gtk3-0:2.46.1-1.el9_2.s390x",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.46.1-1.el9_2.src as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src"
        },
        "product_reference": "webkit2gtk3-0:2.46.1-1.el9_2.src",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.46.1-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64"
        },
        "product_reference": "webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64"
        },
        "product_reference": "webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.46.1-1.el9_2.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686"
        },
        "product_reference": "webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le"
        },
        "product_reference": "webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x"
        },
        "product_reference": "webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-32885",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "discovery_date": "2023-09-01T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2236842"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKitGTK. This security issue occurs when processing maliciously crafted web content that may lead to arbitrary code execution. This memory corruption issue was addressed with improved validation.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Memory corruption issue when processing web content",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This flaw is being rated as \u0027Moderate\u0027 as WebKitGTK package is shipped as a dependency for Gnome package, additionally Red Hat Enterprise Linux doesn\u0027t ship any WebKitGTK based web browser where this flaw would present a higher severity major threat.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-32885"
        },
        {
          "category": "external",
          "summary": "RHBZ#2236842",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2236842"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-32885",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-32885"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-32885",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32885"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2023-0003.html",
          "url": "https://webkitgtk.org/security/WSA-2023-0003.html"
        }
      ],
      "release_date": "2023-04-21T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T00:58:43+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8492"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: Memory corruption issue when processing web content"
    },
    {
      "cve": "CVE-2023-40397",
      "cwe": {
        "id": "CWE-96",
        "name": "Improper Neutralization of Directives in Statically Saved Code (\u0027Static Code Injection\u0027)"
      },
      "discovery_date": "2023-09-14T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2238945"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKit. This flaw allows a remote attacker to cause arbitrary javascript code execution.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: arbitrary javascript code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This flaw is being rated as \u0027Moderate\u0027 as WebKitGTK package is shipped as a dependency for Gnome package. Additionally, Red Hat Enterprise Linux doesn\u0027t ship any WebKitGTK based web browser where this flaw would present a higher severity major threat.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-40397"
        },
        {
          "category": "external",
          "summary": "RHBZ#2238945",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2238945"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-40397",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-40397"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-40397",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-40397"
        },
        {
          "category": "external",
          "summary": "https://wpewebkit.org/security/WSA-2023-0008.html",
          "url": "https://wpewebkit.org/security/WSA-2023-0008.html"
        }
      ],
      "release_date": "2023-09-06T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T00:58:43+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8492"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: arbitrary javascript code execution"
    },
    {
      "cve": "CVE-2023-42852",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2024-03-25T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2271456"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKitGTK and WPE WebKit, which allows remote attacker to perform arbitrary code execution when processing web content. This vulnerability caused by insufficient checks, which could be exploited by attackers to execute malicious code on affected systems.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated important because it affects the confidentiality, integrity, and availability (CIA) of systems, with a high severity rating.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-42852"
        },
        {
          "category": "external",
          "summary": "RHBZ#2271456",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271456"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-42852",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-42852"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-42852",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42852"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2023-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2023-0010.html"
        }
      ],
      "release_date": "2023-11-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T00:58:43+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8492"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2023-42875",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2025-05-15T12:59:19.828000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2366497"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory handling and result in arbitrary code execution.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-42875"
        },
        {
          "category": "external",
          "summary": "RHBZ#2366497",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2366497"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-42875",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-42875"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-42875",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42875"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0004.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0004.html"
        }
      ],
      "release_date": "2025-05-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T00:58:43+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8492"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2023-42917",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "discovery_date": "2023-12-05T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2253058"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content may lead to remote code execution. This vulnerability is known to be actively exploited in the wild and was included in the CISA\u0027s KEV catalog.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Arbitrary Remote Code Execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "All versions of Red Hat Enterprise Linux are affected to this vulnerability. To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content. For this reason, this flaw was rated with an important, and not critical, severity.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-42917"
        },
        {
          "category": "external",
          "summary": "RHBZ#2253058",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2253058"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-42917",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-42917"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-42917",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42917"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2023-0011.html",
          "url": "https://webkitgtk.org/security/WSA-2023-0011.html"
        },
        {
          "category": "external",
          "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
          "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        }
      ],
      "release_date": "2023-12-05T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T00:58:43+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8492"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "exploit_status",
          "date": "2023-12-04T00:00:00+00:00",
          "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        },
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Arbitrary Remote Code Execution"
    },
    {
      "cve": "CVE-2023-42970",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2025-05-15T13:01:32.590000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2366498"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in arbitrary code execution.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-42970"
        },
        {
          "category": "external",
          "summary": "RHBZ#2366498",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2366498"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-42970",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-42970"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-42970",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42970"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0004.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0004.html"
        }
      ],
      "release_date": "2025-05-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T00:58:43+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8492"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2023-43000",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2025-11-21T12:36:58.206000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2416324"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in memory corruption.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to memory corruption",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause memory corruption and the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-43000"
        },
        {
          "category": "external",
          "summary": "RHBZ#2416324",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2416324"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-43000",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-43000"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-43000",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-43000"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0008.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0008.html"
        },
        {
          "category": "external",
          "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
          "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        }
      ],
      "release_date": "2025-11-20T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T00:58:43+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8492"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "exploit_status",
          "date": "2026-03-05T00:00:00+00:00",
          "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        },
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to memory corruption"
    },
    {
      "cve": "CVE-2023-43010",
      "cwe": {
        "id": "CWE-120",
        "name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
      },
      "discovery_date": "2026-03-18T19:58:01.296000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2448778"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause memory corruption due to improper memory handling.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to memory corruption",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause memory corruption and the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-43010"
        },
        {
          "category": "external",
          "summary": "RHBZ#2448778",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2448778"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-43010",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-43010"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-43010",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-43010"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2026-0001.html",
          "url": "https://webkitgtk.org/security/WSA-2026-0001.html"
        }
      ],
      "release_date": "2026-03-18T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T00:58:43+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8492"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to memory corruption"
    },
    {
      "cve": "CVE-2024-4558",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2024-05-08T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2279689"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "There\u0027s a flaw in the Angle package where processing maliciously crafted web content may lead to a use-after-free. A remote attacker may leverage that to exploit heap corruption related bugs, such as crashing the application or remote code execution.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "chromium-browser: Use after free in ANGLE",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-4558"
        },
        {
          "category": "external",
          "summary": "RHBZ#2279689",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279689"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-4558",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-4558"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-4558",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-4558"
        }
      ],
      "release_date": "2024-05-07T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T00:58:43+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8492"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.0,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "chromium-browser: Use after free in ANGLE"
    },
    {
      "cve": "CVE-2024-27820",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2024-09-25T15:37:48.081000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2314698"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKit. This flaw allows a remote attacker to perform arbitrary code execution when processing web content. This flaw is caused by insufficient memory handling, which attackers could exploit to execute malicious code on affected systems.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This WebKit vulnerability marked as important because it enables remote attackers to execute malicious code on users\u0027 systems just by visiting compromised websites, posing significant risks like data theft and system compromise.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-27820"
        },
        {
          "category": "external",
          "summary": "RHBZ#2314698",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314698"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-27820",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-27820"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-27820",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27820"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0005.html",
          "url": "https://webkitgtk.org/security/WSA-2024-0005.html"
        }
      ],
      "release_date": "2024-09-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T00:58:43+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8492"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2024-27851",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2024-09-25T15:44:41.235000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2314704"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKit. This flaw allows a remote attacker to perform arbitrary code execution when processing web content. This flaw is caused by insufficient bounds checks, which could be exploited by attackers to execute malicious code on affected systems.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This WebKit vulnerability marked as important because it enables remote attackers to execute malicious code on users\u0027 systems just by visiting compromised websites, posing significant risks like data theft and system compromise.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-27851"
        },
        {
          "category": "external",
          "summary": "RHBZ#2314704",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314704"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-27851",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-27851"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-27851",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27851"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0005.html",
          "url": "https://webkitgtk.org/security/WSA-2024-0005.html"
        }
      ],
      "release_date": "2024-09-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T00:58:43+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8492"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2024-27856",
      "cwe": {
        "id": "CWE-94",
        "name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
      },
      "discovery_date": "2025-02-10T09:34:34.705418+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2344618"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause unexpected app termination or arbitrary code execution due to improper checks.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing a file may lead to unexpected app termination or arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-27856"
        },
        {
          "category": "external",
          "summary": "RHBZ#2344618",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2344618"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-27856",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-27856"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-27856",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27856"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/120896",
          "url": "https://support.apple.com/en-us/120896"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/120898",
          "url": "https://support.apple.com/en-us/120898"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/120901",
          "url": "https://support.apple.com/en-us/120901"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/120902",
          "url": "https://support.apple.com/en-us/120902"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/120903",
          "url": "https://support.apple.com/en-us/120903"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/120905",
          "url": "https://support.apple.com/en-us/120905"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/120906",
          "url": "https://support.apple.com/en-us/120906"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0001.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0001.html"
        }
      ],
      "release_date": "2025-01-15T19:35:57.075000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T00:58:43+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8492"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing a file may lead to unexpected app termination or arbitrary code execution"
    },
    {
      "cve": "CVE-2024-40776",
      "discovery_date": "2024-07-30T20:48:03+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2301841"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKitGTK. A use-after-free may lead to Remote Code Execution. Users are advised to avoid processing untrusted web content in WebKitGTK.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: webkit2gtk: Use after free may lead to Remote Code Execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-40776"
        },
        {
          "category": "external",
          "summary": "RHBZ#2301841",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2301841"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-40776",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-40776"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-40776",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-40776"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0004.html",
          "url": "https://webkitgtk.org/security/WSA-2024-0004.html"
        }
      ],
      "release_date": "2024-07-30T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T00:58:43+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8492"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: webkit2gtk: Use after free may lead to Remote Code Execution"
    },
    {
      "cve": "CVE-2024-40779",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "discovery_date": "2024-07-31T15:05:50+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2302070"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can trigger an out-of-bounds read due to improper bounds checking, causing an unexpected process crash, resulting in a denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-40779"
        },
        {
          "category": "external",
          "summary": "RHBZ#2302070",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302070"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-40779",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-40779"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-40779",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-40779"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40779",
          "url": "https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40779"
        }
      ],
      "release_date": "2024-07-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T00:58:43+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8492"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking"
    },
    {
      "cve": "CVE-2024-40780",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "discovery_date": "2024-07-31T15:07:22+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2302069"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can trigger an out-of-bounds read due to improper bounds checking, causing an unexpected process crash, resulting in a denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-40780"
        },
        {
          "category": "external",
          "summary": "RHBZ#2302069",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302069"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-40780",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-40780"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-40780",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-40780"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40780",
          "url": "https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40780"
        }
      ],
      "release_date": "2024-07-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T00:58:43+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8492"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking"
    },
    {
      "cve": "CVE-2024-40782",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2024-07-31T14:57:24+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2302071"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can trigger a use-after-free issue due to improper bounds checking, causing an unexpected process crash, resulting in a denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: webkit2gtk: Use-after-free was addressed with improved memory management",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-40782"
        },
        {
          "category": "external",
          "summary": "RHBZ#2302071",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302071"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-40782",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-40782"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-40782",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-40782"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40782",
          "url": "https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40782"
        }
      ],
      "release_date": "2024-07-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T00:58:43+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8492"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: webkit2gtk: Use-after-free was addressed with improved memory management"
    },
    {
      "cve": "CVE-2024-40789",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "discovery_date": "2024-07-31T15:39:05+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2302067"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can trigger an out-of-bounds read due to improper bounds checking, causing an unexpected process crash, resulting in a denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-40789"
        },
        {
          "category": "external",
          "summary": "RHBZ#2302067",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302067"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-40789",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-40789"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-40789",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-40789"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40789",
          "url": "https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40789"
        }
      ],
      "release_date": "2024-07-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T00:58:43+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8492"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2024-54534",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "discovery_date": "2024-12-23T13:18:32.596325+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2333846"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause memory corruption due to improper memory handling.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkit: Processing maliciously crafted web content may lead to memory corruption",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-54534"
        },
        {
          "category": "external",
          "summary": "RHBZ#2333846",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2333846"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-54534",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-54534"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-54534",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-54534"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/121837",
          "url": "https://support.apple.com/en-us/121837"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/121839",
          "url": "https://support.apple.com/en-us/121839"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/121843",
          "url": "https://support.apple.com/en-us/121843"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/121844",
          "url": "https://support.apple.com/en-us/121844"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/121845",
          "url": "https://support.apple.com/en-us/121845"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/121846",
          "url": "https://support.apple.com/en-us/121846"
        }
      ],
      "release_date": "2024-12-11T22:58:39.974000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T00:58:43+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8492"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkit: Processing maliciously crafted web content may lead to memory corruption"
    },
    {
      "cve": "CVE-2025-43480",
      "cwe": {
        "id": "CWE-200",
        "name": "Exposure of Sensitive Information to an Unauthorized Actor"
      },
      "discovery_date": "2025-11-21T12:52:14.645000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2416338"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. A malicious website may exfiltrate data cross-origin due to improper checks.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: A malicious website may exfiltrate data cross-origin",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into visiting a malicious website, potentially exposing sensitive information. Due to this reason, this flaw has been rated with a moderate severity.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
          "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43480"
        },
        {
          "category": "external",
          "summary": "RHBZ#2416338",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2416338"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43480",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43480"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43480",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43480"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0008.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0008.html"
        }
      ],
      "release_date": "2025-11-20T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T00:58:43+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8492"
        },
        {
          "category": "workaround",
          "details": "Do not visit untrusted websites. Also, do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi, and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and used via a graphical interface to process untrusted web content, via GNOME, for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.src",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.i686",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.s390x",
            "AppStream-9.2.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: A malicious website may exfiltrate data cross-origin"
    }
  ]
}

RHSA-2024:8496

Vulnerability from csaf_redhat - Published: 2024-10-28 01:13 - Updated: 2026-04-13 08:44

Summary

Red Hat Security Advisory: webkit2gtk3 security update

Severity

Important

Notes

Topic: An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details: WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fix(es): * webkitgtk: Memory corruption issue when processing web content (CVE-2022-32885) * webkitgtk: arbitrary javascript code execution (CVE-2023-40397) * webkitgtk: Arbitrary Remote Code Execution (CVE-2023-42917) * webkitgtk: type confusion may lead to arbitrary code execution (CVE-2024-23222) * webkitgtk: Processing web content may lead to arbitrary code execution (CVE-2023-42852) * chromium-browser: Use after free in ANGLE (CVE-2024-4558) * webkitgtk: webkit2gtk: Use after free may lead to Remote Code Execution (CVE-2024-40776) * webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2024-40789) * webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking (CVE-2024-40780) * webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking (CVE-2024-40779) * webkitgtk: webkit2gtk: Use-after-free was addressed with improved memory management (CVE-2024-40782) * webkitgtk: Processing web content may lead to arbitrary code execution (CVE-2024-27808) * webkitgtk: Processing web content may lead to arbitrary code execution (CVE-2024-27820) * webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution (CVE-2024-27833) * webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution (CVE-2024-27851) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2022-32885

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-20 - Improper Input Validation

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2023-40397

A vulnerability was found in WebKit. This flaw allows a remote attacker to cause arbitrary javascript code execution.

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-96 - Improper Neutralization of Directives in Statically Saved Code ('Static Code Injection')

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2023-42852

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2023-42875

A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory handling and result in arbitrary code execution.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2023-42917

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-787 - Out-of-bounds Write

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround

Threats

Exploit Status CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog

Impact Important

CVE-2023-42970

A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in arbitrary code execution.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2023-43000

A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in memory corruption.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround

Threats

Exploit Status CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog

Impact Important

CVE-2023-43010

A flaw was found in WebKitGTK. Processing malicious web content can cause memory corruption due to improper memory handling.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-120 - Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2024-4558

7.0 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2024-23222

A flaw was found in WebKitGTK. Processing malicious web content may lead to remote code execution due to a type confusion issue. This vulnerability is known to be actively exploited in the wild and was included in the CISA's KEV catalog.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-843 - Access of Resource Using Incompatible Type ('Type Confusion')

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround

Threats

Exploit Status CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog

Impact Important

CVE-2024-27808

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2024-27820

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2024-27833

A vulnerability was found in WebKit. This flaw allows a remote attacker to perform arbitrary code execution when processing web content. This flaw is caused by insufficient input validation, which attackers could exploit to execute malicious code on affected systems.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2024-27851

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2024-27856

A flaw was found in WebKitGTK. Processing malicious web content can cause unexpected app termination or arbitrary code execution due to improper checks.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-94 - Improper Control of Generation of Code ('Code Injection')

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2024-40776

A vulnerability was found in WebKitGTK. A use-after-free may lead to Remote Code Execution. Users are advised to avoid processing untrusted web content in WebKitGTK.

4.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2024-40779

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE-125 - Out-of-bounds Read

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2024-40780

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE-125 - Out-of-bounds Read

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2024-40782

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE-416 - Use After Free

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2024-40789

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE-125 - Out-of-bounds Read

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2024-54534

A flaw was found in WebKitGTK. Processing malicious web content can cause memory corruption due to improper memory handling.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-787 - Out-of-bounds Write

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2025-24223

A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory handling and result in memory corruption.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2025-24264

A flaw was found in WebKitGTK. Processing malicious web content can cause an unexpected process crash due to improper memory handling.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2025-31204

A flaw was found in WebKitGTK. Processing malicious web content can cause out-of-bounds memory access due to improper memory handling and result in memory corruption.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-787 - Out-of-bounds Write

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2025-31206

A flaw was found in WebKitGTK. Processing malicious web content can cause a type confusion issue due to improper state handling and result in an unexpected crash.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-843 - Access of Resource Using Incompatible Type ('Type Confusion')

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2025-31215

A flaw was found in WebKitGTK. Processing malicious web content can cause a NULL pointer dereference due to improper checks, resulting in an unexpected process crash.

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE-476 - NULL Pointer Dereference

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2025-43480

A flaw was found in WebKitGTK. A malicious website may exfiltrate data cross-origin due to improper checks.

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

References

157 references

URL	Category
https://access.redhat.com/errata/RHSA-2024:8496	self
https://access.redhat.com/security/updates/classi…	external
https://access.redhat.com/security/vulnerabilities/	external
https://bugzilla.redhat.com/show_bug.cgi?id=2236842	external
https://bugzilla.redhat.com/show_bug.cgi?id=2238945	external
https://bugzilla.redhat.com/show_bug.cgi?id=2253058	external
https://bugzilla.redhat.com/show_bug.cgi?id=2259893	external
https://bugzilla.redhat.com/show_bug.cgi?id=2271456	external
https://bugzilla.redhat.com/show_bug.cgi?id=2279689	external
https://bugzilla.redhat.com/show_bug.cgi?id=2301841	external
https://bugzilla.redhat.com/show_bug.cgi?id=2302067	external
https://bugzilla.redhat.com/show_bug.cgi?id=2302069	external
https://bugzilla.redhat.com/show_bug.cgi?id=2302070	external
https://bugzilla.redhat.com/show_bug.cgi?id=2302071	external
https://bugzilla.redhat.com/show_bug.cgi?id=2314697	external
https://bugzilla.redhat.com/show_bug.cgi?id=2314698	external
https://bugzilla.redhat.com/show_bug.cgi?id=2314700	external
https://bugzilla.redhat.com/show_bug.cgi?id=2314704	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2022-32885	self
https://bugzilla.redhat.com/show_bug.cgi?id=2236842	external
https://www.cve.org/CVERecord?id=CVE-2022-32885	external
https://nvd.nist.gov/vuln/detail/CVE-2022-32885	external
https://webkitgtk.org/security/WSA-2023-0003.html	external
https://access.redhat.com/security/cve/CVE-2023-40397	self
https://bugzilla.redhat.com/show_bug.cgi?id=2238945	external
https://www.cve.org/CVERecord?id=CVE-2023-40397	external
https://nvd.nist.gov/vuln/detail/CVE-2023-40397	external
https://wpewebkit.org/security/WSA-2023-0008.html	external
https://access.redhat.com/security/cve/CVE-2023-42852	self
https://bugzilla.redhat.com/show_bug.cgi?id=2271456	external
https://www.cve.org/CVERecord?id=CVE-2023-42852	external
https://nvd.nist.gov/vuln/detail/CVE-2023-42852	external
https://webkitgtk.org/security/WSA-2023-0010.html	external
https://access.redhat.com/security/cve/CVE-2023-42875	self
https://bugzilla.redhat.com/show_bug.cgi?id=2366497	external
https://www.cve.org/CVERecord?id=CVE-2023-42875	external
https://nvd.nist.gov/vuln/detail/CVE-2023-42875	external
https://webkitgtk.org/security/WSA-2025-0004.html	external
https://access.redhat.com/security/cve/CVE-2023-42917	self
https://bugzilla.redhat.com/show_bug.cgi?id=2253058	external
https://www.cve.org/CVERecord?id=CVE-2023-42917	external
https://nvd.nist.gov/vuln/detail/CVE-2023-42917	external
https://webkitgtk.org/security/WSA-2023-0011.html	external
https://www.cisa.gov/known-exploited-vulnerabilit…	external
https://access.redhat.com/security/cve/CVE-2023-42970	self
https://bugzilla.redhat.com/show_bug.cgi?id=2366498	external
https://www.cve.org/CVERecord?id=CVE-2023-42970	external
https://nvd.nist.gov/vuln/detail/CVE-2023-42970	external
https://access.redhat.com/security/cve/CVE-2023-43000	self
https://bugzilla.redhat.com/show_bug.cgi?id=2416324	external
https://www.cve.org/CVERecord?id=CVE-2023-43000	external
https://nvd.nist.gov/vuln/detail/CVE-2023-43000	external
https://webkitgtk.org/security/WSA-2025-0008.html	external
https://access.redhat.com/security/cve/CVE-2023-43010	self
https://bugzilla.redhat.com/show_bug.cgi?id=2448778	external
https://www.cve.org/CVERecord?id=CVE-2023-43010	external
https://nvd.nist.gov/vuln/detail/CVE-2023-43010	external
https://webkitgtk.org/security/WSA-2026-0001.html	external
https://access.redhat.com/security/cve/CVE-2024-4558	self
https://bugzilla.redhat.com/show_bug.cgi?id=2279689	external
https://www.cve.org/CVERecord?id=CVE-2024-4558	external
https://nvd.nist.gov/vuln/detail/CVE-2024-4558	external
https://access.redhat.com/security/cve/CVE-2024-23222	self
https://bugzilla.redhat.com/show_bug.cgi?id=2259893	external
https://www.cve.org/CVERecord?id=CVE-2024-23222	external
https://nvd.nist.gov/vuln/detail/CVE-2024-23222	external
https://webkitgtk.org/security/WSA-2024-0001.html	external
https://access.redhat.com/security/cve/CVE-2024-27808	self
https://bugzilla.redhat.com/show_bug.cgi?id=2314697	external
https://www.cve.org/CVERecord?id=CVE-2024-27808	external
https://nvd.nist.gov/vuln/detail/CVE-2024-27808	external
https://webkitgtk.org/security/WSA-2024-0005.html	external
https://access.redhat.com/security/cve/CVE-2024-27820	self
https://bugzilla.redhat.com/show_bug.cgi?id=2314698	external
https://www.cve.org/CVERecord?id=CVE-2024-27820	external
https://nvd.nist.gov/vuln/detail/CVE-2024-27820	external
https://access.redhat.com/security/cve/CVE-2024-27833	self
https://bugzilla.redhat.com/show_bug.cgi?id=2314700	external
https://www.cve.org/CVERecord?id=CVE-2024-27833	external
https://nvd.nist.gov/vuln/detail/CVE-2024-27833	external
https://access.redhat.com/security/cve/CVE-2024-27851	self
https://bugzilla.redhat.com/show_bug.cgi?id=2314704	external
https://www.cve.org/CVERecord?id=CVE-2024-27851	external
https://nvd.nist.gov/vuln/detail/CVE-2024-27851	external
https://access.redhat.com/security/cve/CVE-2024-27856	self
https://bugzilla.redhat.com/show_bug.cgi?id=2344618	external
https://www.cve.org/CVERecord?id=CVE-2024-27856	external
https://nvd.nist.gov/vuln/detail/CVE-2024-27856	external
https://support.apple.com/en-us/120896	external
https://support.apple.com/en-us/120898	external
https://support.apple.com/en-us/120901	external
https://support.apple.com/en-us/120902	external
https://support.apple.com/en-us/120903	external
https://support.apple.com/en-us/120905	external
https://support.apple.com/en-us/120906	external
https://webkitgtk.org/security/WSA-2025-0001.html	external
https://access.redhat.com/security/cve/CVE-2024-40776	self
https://bugzilla.redhat.com/show_bug.cgi?id=2301841	external
https://www.cve.org/CVERecord?id=CVE-2024-40776	external
https://nvd.nist.gov/vuln/detail/CVE-2024-40776	external
https://webkitgtk.org/security/WSA-2024-0004.html	external
https://access.redhat.com/security/cve/CVE-2024-40779	self
https://bugzilla.redhat.com/show_bug.cgi?id=2302070	external
https://www.cve.org/CVERecord?id=CVE-2024-40779	external
https://nvd.nist.gov/vuln/detail/CVE-2024-40779	external
https://webkitgtk.org/security/WSA-2024-0004.html…	external
https://access.redhat.com/security/cve/CVE-2024-40780	self
https://bugzilla.redhat.com/show_bug.cgi?id=2302069	external
https://www.cve.org/CVERecord?id=CVE-2024-40780	external
https://nvd.nist.gov/vuln/detail/CVE-2024-40780	external
https://webkitgtk.org/security/WSA-2024-0004.html…	external
https://access.redhat.com/security/cve/CVE-2024-40782	self
https://bugzilla.redhat.com/show_bug.cgi?id=2302071	external
https://www.cve.org/CVERecord?id=CVE-2024-40782	external
https://nvd.nist.gov/vuln/detail/CVE-2024-40782	external
https://webkitgtk.org/security/WSA-2024-0004.html…	external
https://access.redhat.com/security/cve/CVE-2024-40789	self
https://bugzilla.redhat.com/show_bug.cgi?id=2302067	external
https://www.cve.org/CVERecord?id=CVE-2024-40789	external
https://nvd.nist.gov/vuln/detail/CVE-2024-40789	external
https://webkitgtk.org/security/WSA-2024-0004.html…	external
https://access.redhat.com/security/cve/CVE-2024-54534	self
https://bugzilla.redhat.com/show_bug.cgi?id=2333846	external
https://www.cve.org/CVERecord?id=CVE-2024-54534	external
https://nvd.nist.gov/vuln/detail/CVE-2024-54534	external
https://support.apple.com/en-us/121837	external
https://support.apple.com/en-us/121839	external
https://support.apple.com/en-us/121843	external
https://support.apple.com/en-us/121844	external
https://support.apple.com/en-us/121845	external
https://support.apple.com/en-us/121846	external
https://access.redhat.com/security/cve/CVE-2025-24223	self
https://bugzilla.redhat.com/show_bug.cgi?id=2366499	external
https://www.cve.org/CVERecord?id=CVE-2025-24223	external
https://nvd.nist.gov/vuln/detail/CVE-2025-24223	external
https://access.redhat.com/security/cve/CVE-2025-24264	self
https://bugzilla.redhat.com/show_bug.cgi?id=2357918	external
https://www.cve.org/CVERecord?id=CVE-2025-24264	external
https://nvd.nist.gov/vuln/detail/CVE-2025-24264	external
https://webkitgtk.org/security/WSA-2025-0003.html	external
https://access.redhat.com/security/cve/CVE-2025-31204	self
https://bugzilla.redhat.com/show_bug.cgi?id=2366500	external
https://www.cve.org/CVERecord?id=CVE-2025-31204	external
https://nvd.nist.gov/vuln/detail/CVE-2025-31204	external
https://access.redhat.com/security/cve/CVE-2025-31206	self
https://bugzilla.redhat.com/show_bug.cgi?id=2366502	external
https://www.cve.org/CVERecord?id=CVE-2025-31206	external
https://nvd.nist.gov/vuln/detail/CVE-2025-31206	external
https://access.redhat.com/security/cve/CVE-2025-31215	self
https://bugzilla.redhat.com/show_bug.cgi?id=2366503	external
https://www.cve.org/CVERecord?id=CVE-2025-31215	external
https://nvd.nist.gov/vuln/detail/CVE-2025-31215	external
https://access.redhat.com/security/cve/CVE-2025-43480	self
https://bugzilla.redhat.com/show_bug.cgi?id=2416338	external
https://www.cve.org/CVERecord?id=CVE-2025-43480	external
https://nvd.nist.gov/vuln/detail/CVE-2025-43480	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform.\n\nSecurity Fix(es):\n\n* webkitgtk: Memory corruption issue when processing web content (CVE-2022-32885)\n\n* webkitgtk: arbitrary javascript code execution (CVE-2023-40397)\n\n* webkitgtk: Arbitrary Remote Code Execution (CVE-2023-42917)\n\n* webkitgtk: type confusion may lead to arbitrary code execution (CVE-2024-23222)\n\n* webkitgtk: Processing web content may lead to arbitrary code execution (CVE-2023-42852)\n\n* chromium-browser: Use after free in ANGLE (CVE-2024-4558)\n\n* webkitgtk: webkit2gtk: Use after free may lead to Remote Code Execution (CVE-2024-40776)\n\n* webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2024-40789)\n\n* webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking (CVE-2024-40780)\n\n* webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking (CVE-2024-40779)\n\n* webkitgtk: webkit2gtk: Use-after-free was addressed with improved memory management (CVE-2024-40782)\n\n* webkitgtk: Processing web content may lead to arbitrary code execution (CVE-2024-27808)\n\n* webkitgtk: Processing web content may lead to arbitrary code execution (CVE-2024-27820)\n\n* webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution (CVE-2024-27833)\n\n* webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution (CVE-2024-27851)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2024:8496",
        "url": "https://access.redhat.com/errata/RHSA-2024:8496"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/vulnerabilities/",
        "url": "https://access.redhat.com/security/vulnerabilities/"
      },
      {
        "category": "external",
        "summary": "2236842",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2236842"
      },
      {
        "category": "external",
        "summary": "2238945",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2238945"
      },
      {
        "category": "external",
        "summary": "2253058",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2253058"
      },
      {
        "category": "external",
        "summary": "2259893",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2259893"
      },
      {
        "category": "external",
        "summary": "2271456",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271456"
      },
      {
        "category": "external",
        "summary": "2279689",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279689"
      },
      {
        "category": "external",
        "summary": "2301841",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2301841"
      },
      {
        "category": "external",
        "summary": "2302067",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302067"
      },
      {
        "category": "external",
        "summary": "2302069",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302069"
      },
      {
        "category": "external",
        "summary": "2302070",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302070"
      },
      {
        "category": "external",
        "summary": "2302071",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302071"
      },
      {
        "category": "external",
        "summary": "2314697",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314697"
      },
      {
        "category": "external",
        "summary": "2314698",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314698"
      },
      {
        "category": "external",
        "summary": "2314700",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314700"
      },
      {
        "category": "external",
        "summary": "2314704",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314704"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_8496.json"
      }
    ],
    "title": "Red Hat Security Advisory: webkit2gtk3 security update",
    "tracking": {
      "current_release_date": "2026-04-13T08:44:39+00:00",
      "generator": {
        "date": "2026-04-13T08:44:39+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.7.5"
        }
      },
      "id": "RHSA-2024:8496",
      "initial_release_date": "2024-10-28T01:13:18+00:00",
      "revision_history": [
        {
          "date": "2024-10-28T01:13:18+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2024-10-28T01:13:18+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-04-13T08:44:39+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream E4S (v.9.0)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream E4S (v.9.0)",
                  "product_id": "AppStream-9.0.0.Z.E4S",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_e4s:9.0::appstream"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.46.1-1.el9_0.src",
                "product": {
                  "name": "webkit2gtk3-0:2.46.1-1.el9_0.src",
                  "product_id": "webkit2gtk3-0:2.46.1-1.el9_0.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.46.1-1.el9_0?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
                "product": {
                  "name": "webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
                  "product_id": "webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.46.1-1.el9_0?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
                  "product_id": "webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.46.1-1.el9_0?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
                  "product_id": "webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.46.1-1.el9_0?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.46.1-1.el9_0?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
                  "product_id": "webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.46.1-1.el9_0?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
                  "product_id": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.46.1-1.el9_0?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.46.1-1.el9_0?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.46.1-1.el9_0?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.46.1-1.el9_0?arch=aarch64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
                "product": {
                  "name": "webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
                  "product_id": "webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.46.1-1.el9_0?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
                  "product_id": "webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.46.1-1.el9_0?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
                  "product_id": "webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.46.1-1.el9_0?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.46.1-1.el9_0?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
                  "product_id": "webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.46.1-1.el9_0?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
                  "product_id": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.46.1-1.el9_0?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.46.1-1.el9_0?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.46.1-1.el9_0?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.46.1-1.el9_0?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.46.1-1.el9_0.i686",
                "product": {
                  "name": "webkit2gtk3-0:2.46.1-1.el9_0.i686",
                  "product_id": "webkit2gtk3-0:2.46.1-1.el9_0.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.46.1-1.el9_0?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
                  "product_id": "webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.46.1-1.el9_0?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
                  "product_id": "webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.46.1-1.el9_0?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.46.1-1.el9_0?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
                  "product_id": "webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.46.1-1.el9_0?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
                  "product_id": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.46.1-1.el9_0?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.46.1-1.el9_0?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.46.1-1.el9_0?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.46.1-1.el9_0?arch=i686"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i686"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
                "product": {
                  "name": "webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
                  "product_id": "webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.46.1-1.el9_0?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
                  "product_id": "webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.46.1-1.el9_0?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
                  "product_id": "webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.46.1-1.el9_0?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.46.1-1.el9_0?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
                  "product_id": "webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.46.1-1.el9_0?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
                  "product_id": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.46.1-1.el9_0?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.46.1-1.el9_0?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.46.1-1.el9_0?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.46.1-1.el9_0?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.46.1-1.el9_0.s390x",
                "product": {
                  "name": "webkit2gtk3-0:2.46.1-1.el9_0.s390x",
                  "product_id": "webkit2gtk3-0:2.46.1-1.el9_0.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.46.1-1.el9_0?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
                  "product_id": "webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.46.1-1.el9_0?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
                  "product_id": "webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.46.1-1.el9_0?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.46.1-1.el9_0?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
                  "product_id": "webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.46.1-1.el9_0?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
                  "product_id": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.46.1-1.el9_0?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.46.1-1.el9_0?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.46.1-1.el9_0?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.46.1-1.el9_0?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.46.1-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64"
        },
        "product_reference": "webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.46.1-1.el9_0.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686"
        },
        "product_reference": "webkit2gtk3-0:2.46.1-1.el9_0.i686",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.46.1-1.el9_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le"
        },
        "product_reference": "webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.46.1-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x"
        },
        "product_reference": "webkit2gtk3-0:2.46.1-1.el9_0.s390x",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.46.1-1.el9_0.src as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src"
        },
        "product_reference": "webkit2gtk3-0:2.46.1-1.el9_0.src",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.46.1-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64"
        },
        "product_reference": "webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64"
        },
        "product_reference": "webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.46.1-1.el9_0.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686"
        },
        "product_reference": "webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le"
        },
        "product_reference": "webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x"
        },
        "product_reference": "webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-32885",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "discovery_date": "2023-09-01T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2236842"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKitGTK. This security issue occurs when processing maliciously crafted web content that may lead to arbitrary code execution. This memory corruption issue was addressed with improved validation.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Memory corruption issue when processing web content",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This flaw is being rated as \u0027Moderate\u0027 as WebKitGTK package is shipped as a dependency for Gnome package, additionally Red Hat Enterprise Linux doesn\u0027t ship any WebKitGTK based web browser where this flaw would present a higher severity major threat.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-32885"
        },
        {
          "category": "external",
          "summary": "RHBZ#2236842",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2236842"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-32885",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-32885"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-32885",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32885"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2023-0003.html",
          "url": "https://webkitgtk.org/security/WSA-2023-0003.html"
        }
      ],
      "release_date": "2023-04-21T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T01:13:18+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8496"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: Memory corruption issue when processing web content"
    },
    {
      "cve": "CVE-2023-40397",
      "cwe": {
        "id": "CWE-96",
        "name": "Improper Neutralization of Directives in Statically Saved Code (\u0027Static Code Injection\u0027)"
      },
      "discovery_date": "2023-09-14T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2238945"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKit. This flaw allows a remote attacker to cause arbitrary javascript code execution.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: arbitrary javascript code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This flaw is being rated as \u0027Moderate\u0027 as WebKitGTK package is shipped as a dependency for Gnome package. Additionally, Red Hat Enterprise Linux doesn\u0027t ship any WebKitGTK based web browser where this flaw would present a higher severity major threat.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-40397"
        },
        {
          "category": "external",
          "summary": "RHBZ#2238945",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2238945"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-40397",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-40397"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-40397",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-40397"
        },
        {
          "category": "external",
          "summary": "https://wpewebkit.org/security/WSA-2023-0008.html",
          "url": "https://wpewebkit.org/security/WSA-2023-0008.html"
        }
      ],
      "release_date": "2023-09-06T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T01:13:18+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8496"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: arbitrary javascript code execution"
    },
    {
      "cve": "CVE-2023-42852",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2024-03-25T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2271456"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKitGTK and WPE WebKit, which allows remote attacker to perform arbitrary code execution when processing web content. This vulnerability caused by insufficient checks, which could be exploited by attackers to execute malicious code on affected systems.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated important because it affects the confidentiality, integrity, and availability (CIA) of systems, with a high severity rating.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-42852"
        },
        {
          "category": "external",
          "summary": "RHBZ#2271456",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271456"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-42852",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-42852"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-42852",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42852"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2023-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2023-0010.html"
        }
      ],
      "release_date": "2023-11-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T01:13:18+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8496"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2023-42875",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2025-05-15T12:59:19.828000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2366497"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory handling and result in arbitrary code execution.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-42875"
        },
        {
          "category": "external",
          "summary": "RHBZ#2366497",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2366497"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-42875",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-42875"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-42875",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42875"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0004.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0004.html"
        }
      ],
      "release_date": "2025-05-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T01:13:18+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8496"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2023-42917",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "discovery_date": "2023-12-05T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2253058"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content may lead to remote code execution. This vulnerability is known to be actively exploited in the wild and was included in the CISA\u0027s KEV catalog.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Arbitrary Remote Code Execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "All versions of Red Hat Enterprise Linux are affected to this vulnerability. To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content. For this reason, this flaw was rated with an important, and not critical, severity.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-42917"
        },
        {
          "category": "external",
          "summary": "RHBZ#2253058",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2253058"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-42917",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-42917"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-42917",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42917"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2023-0011.html",
          "url": "https://webkitgtk.org/security/WSA-2023-0011.html"
        },
        {
          "category": "external",
          "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
          "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        }
      ],
      "release_date": "2023-12-05T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T01:13:18+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8496"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "exploit_status",
          "date": "2023-12-04T00:00:00+00:00",
          "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        },
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Arbitrary Remote Code Execution"
    },
    {
      "cve": "CVE-2023-42970",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2025-05-15T13:01:32.590000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2366498"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in arbitrary code execution.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-42970"
        },
        {
          "category": "external",
          "summary": "RHBZ#2366498",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2366498"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-42970",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-42970"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-42970",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42970"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0004.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0004.html"
        }
      ],
      "release_date": "2025-05-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T01:13:18+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8496"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2023-43000",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2025-11-21T12:36:58.206000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2416324"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in memory corruption.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to memory corruption",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause memory corruption and the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-43000"
        },
        {
          "category": "external",
          "summary": "RHBZ#2416324",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2416324"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-43000",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-43000"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-43000",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-43000"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0008.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0008.html"
        },
        {
          "category": "external",
          "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
          "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        }
      ],
      "release_date": "2025-11-20T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T01:13:18+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8496"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "exploit_status",
          "date": "2026-03-05T00:00:00+00:00",
          "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        },
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to memory corruption"
    },
    {
      "cve": "CVE-2023-43010",
      "cwe": {
        "id": "CWE-120",
        "name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
      },
      "discovery_date": "2026-03-18T19:58:01.296000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2448778"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause memory corruption due to improper memory handling.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to memory corruption",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause memory corruption and the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-43010"
        },
        {
          "category": "external",
          "summary": "RHBZ#2448778",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2448778"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-43010",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-43010"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-43010",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-43010"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2026-0001.html",
          "url": "https://webkitgtk.org/security/WSA-2026-0001.html"
        }
      ],
      "release_date": "2026-03-18T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T01:13:18+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8496"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to memory corruption"
    },
    {
      "cve": "CVE-2024-4558",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2024-05-08T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2279689"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "There\u0027s a flaw in the Angle package where processing maliciously crafted web content may lead to a use-after-free. A remote attacker may leverage that to exploit heap corruption related bugs, such as crashing the application or remote code execution.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "chromium-browser: Use after free in ANGLE",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-4558"
        },
        {
          "category": "external",
          "summary": "RHBZ#2279689",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279689"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-4558",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-4558"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-4558",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-4558"
        }
      ],
      "release_date": "2024-05-07T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T01:13:18+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8496"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.0,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "chromium-browser: Use after free in ANGLE"
    },
    {
      "cve": "CVE-2024-23222",
      "cwe": {
        "id": "CWE-843",
        "name": "Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)"
      },
      "discovery_date": "2024-01-23T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2259893"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content may lead to remote code execution due to a type confusion issue. This vulnerability is known to be actively exploited in the wild and was included in the CISA\u0027s KEV catalog.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: type confusion may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This flaw depends on the WebKitGTK JIT engine to be enabled. This feature has been disabled in Red Hat Enterprise Linux 8.8 and 9.2 by the errata RHSA-2023:4202 and RHSA-2023:4201. Therefore, Red Hat Enterprise Linux 8.8 and 9.2, when these errata are applied, and newer versions are not affected by this vulnerability.\n\nRHSA-2023:4202: https://access.redhat.com/errata/RHSA-2023:4202\nRHSA-2023:4201: https://access.redhat.com/errata/RHSA-2023:4201\n\nTo exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content. For this reason, this flaw was rated with an important, and not critical, severity.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-23222"
        },
        {
          "category": "external",
          "summary": "RHBZ#2259893",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2259893"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-23222",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-23222"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-23222",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-23222"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0001.html",
          "url": "https://webkitgtk.org/security/WSA-2024-0001.html"
        },
        {
          "category": "external",
          "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
          "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        }
      ],
      "release_date": "2024-01-23T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T01:13:18+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8496"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "exploit_status",
          "date": "2024-01-23T00:00:00+00:00",
          "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        },
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: type confusion may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2024-27808",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2024-09-25T15:36:18.356000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2314697"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKit. This flaw allows a remote attacker to perform arbitrary code execution when processing web content. This flaw is caused by insufficient memory handling, which attackers could exploit to execute malicious code on affected systems.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This WebKit vulnerability marked as important because it enables remote attackers to execute malicious code on users\u0027 systems just by visiting compromised websites, posing significant risks like data theft and system compromise.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-27808"
        },
        {
          "category": "external",
          "summary": "RHBZ#2314697",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314697"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-27808",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-27808"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-27808",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27808"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0005.html",
          "url": "https://webkitgtk.org/security/WSA-2024-0005.html"
        }
      ],
      "release_date": "2024-09-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T01:13:18+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8496"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2024-27820",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2024-09-25T15:37:48.081000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2314698"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKit. This flaw allows a remote attacker to perform arbitrary code execution when processing web content. This flaw is caused by insufficient memory handling, which attackers could exploit to execute malicious code on affected systems.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This WebKit vulnerability marked as important because it enables remote attackers to execute malicious code on users\u0027 systems just by visiting compromised websites, posing significant risks like data theft and system compromise.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-27820"
        },
        {
          "category": "external",
          "summary": "RHBZ#2314698",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314698"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-27820",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-27820"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-27820",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27820"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0005.html",
          "url": "https://webkitgtk.org/security/WSA-2024-0005.html"
        }
      ],
      "release_date": "2024-09-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T01:13:18+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8496"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2024-27833",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2024-09-25T15:40:34.042000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2314700"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKit. This flaw allows a remote attacker to perform arbitrary code execution when processing web content. This flaw is caused by insufficient input validation, which attackers could exploit to execute malicious code on affected systems.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This WebKit vulnerability marked as important because it enables remote attackers to execute malicious code on users\u0027 systems just by visiting compromised websites, posing significant risks like data theft and system compromise.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-27833"
        },
        {
          "category": "external",
          "summary": "RHBZ#2314700",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314700"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-27833",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-27833"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-27833",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27833"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0005.html",
          "url": "https://webkitgtk.org/security/WSA-2024-0005.html"
        }
      ],
      "release_date": "2024-09-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T01:13:18+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8496"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2024-27851",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2024-09-25T15:44:41.235000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2314704"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKit. This flaw allows a remote attacker to perform arbitrary code execution when processing web content. This flaw is caused by insufficient bounds checks, which could be exploited by attackers to execute malicious code on affected systems.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This WebKit vulnerability marked as important because it enables remote attackers to execute malicious code on users\u0027 systems just by visiting compromised websites, posing significant risks like data theft and system compromise.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-27851"
        },
        {
          "category": "external",
          "summary": "RHBZ#2314704",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314704"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-27851",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-27851"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-27851",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27851"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0005.html",
          "url": "https://webkitgtk.org/security/WSA-2024-0005.html"
        }
      ],
      "release_date": "2024-09-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T01:13:18+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8496"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2024-27856",
      "cwe": {
        "id": "CWE-94",
        "name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
      },
      "discovery_date": "2025-02-10T09:34:34.705418+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2344618"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause unexpected app termination or arbitrary code execution due to improper checks.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing a file may lead to unexpected app termination or arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-27856"
        },
        {
          "category": "external",
          "summary": "RHBZ#2344618",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2344618"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-27856",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-27856"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-27856",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27856"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/120896",
          "url": "https://support.apple.com/en-us/120896"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/120898",
          "url": "https://support.apple.com/en-us/120898"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/120901",
          "url": "https://support.apple.com/en-us/120901"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/120902",
          "url": "https://support.apple.com/en-us/120902"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/120903",
          "url": "https://support.apple.com/en-us/120903"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/120905",
          "url": "https://support.apple.com/en-us/120905"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/120906",
          "url": "https://support.apple.com/en-us/120906"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0001.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0001.html"
        }
      ],
      "release_date": "2025-01-15T19:35:57.075000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T01:13:18+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8496"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing a file may lead to unexpected app termination or arbitrary code execution"
    },
    {
      "cve": "CVE-2024-40776",
      "discovery_date": "2024-07-30T20:48:03+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2301841"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKitGTK. A use-after-free may lead to Remote Code Execution. Users are advised to avoid processing untrusted web content in WebKitGTK.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: webkit2gtk: Use after free may lead to Remote Code Execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-40776"
        },
        {
          "category": "external",
          "summary": "RHBZ#2301841",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2301841"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-40776",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-40776"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-40776",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-40776"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0004.html",
          "url": "https://webkitgtk.org/security/WSA-2024-0004.html"
        }
      ],
      "release_date": "2024-07-30T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T01:13:18+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8496"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: webkit2gtk: Use after free may lead to Remote Code Execution"
    },
    {
      "cve": "CVE-2024-40779",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "discovery_date": "2024-07-31T15:05:50+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2302070"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can trigger an out-of-bounds read due to improper bounds checking, causing an unexpected process crash, resulting in a denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-40779"
        },
        {
          "category": "external",
          "summary": "RHBZ#2302070",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302070"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-40779",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-40779"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-40779",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-40779"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40779",
          "url": "https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40779"
        }
      ],
      "release_date": "2024-07-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T01:13:18+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8496"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking"
    },
    {
      "cve": "CVE-2024-40780",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "discovery_date": "2024-07-31T15:07:22+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2302069"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can trigger an out-of-bounds read due to improper bounds checking, causing an unexpected process crash, resulting in a denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-40780"
        },
        {
          "category": "external",
          "summary": "RHBZ#2302069",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302069"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-40780",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-40780"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-40780",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-40780"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40780",
          "url": "https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40780"
        }
      ],
      "release_date": "2024-07-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T01:13:18+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8496"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking"
    },
    {
      "cve": "CVE-2024-40782",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2024-07-31T14:57:24+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2302071"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can trigger a use-after-free issue due to improper bounds checking, causing an unexpected process crash, resulting in a denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: webkit2gtk: Use-after-free was addressed with improved memory management",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-40782"
        },
        {
          "category": "external",
          "summary": "RHBZ#2302071",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302071"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-40782",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-40782"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-40782",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-40782"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40782",
          "url": "https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40782"
        }
      ],
      "release_date": "2024-07-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T01:13:18+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8496"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: webkit2gtk: Use-after-free was addressed with improved memory management"
    },
    {
      "cve": "CVE-2024-40789",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "discovery_date": "2024-07-31T15:39:05+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2302067"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can trigger an out-of-bounds read due to improper bounds checking, causing an unexpected process crash, resulting in a denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-40789"
        },
        {
          "category": "external",
          "summary": "RHBZ#2302067",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302067"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-40789",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-40789"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-40789",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-40789"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40789",
          "url": "https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40789"
        }
      ],
      "release_date": "2024-07-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T01:13:18+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8496"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2024-54534",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "discovery_date": "2024-12-23T13:18:32.596325+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2333846"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause memory corruption due to improper memory handling.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkit: Processing maliciously crafted web content may lead to memory corruption",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-54534"
        },
        {
          "category": "external",
          "summary": "RHBZ#2333846",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2333846"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-54534",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-54534"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-54534",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-54534"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/121837",
          "url": "https://support.apple.com/en-us/121837"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/121839",
          "url": "https://support.apple.com/en-us/121839"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/121843",
          "url": "https://support.apple.com/en-us/121843"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/121844",
          "url": "https://support.apple.com/en-us/121844"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/121845",
          "url": "https://support.apple.com/en-us/121845"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/121846",
          "url": "https://support.apple.com/en-us/121846"
        }
      ],
      "release_date": "2024-12-11T22:58:39.974000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T01:13:18+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8496"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkit: Processing maliciously crafted web content may lead to memory corruption"
    },
    {
      "cve": "CVE-2025-24223",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2025-05-15T13:03:40.562000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2366499"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory handling and result in memory corruption.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to memory corruption",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-24223"
        },
        {
          "category": "external",
          "summary": "RHBZ#2366499",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2366499"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-24223",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-24223"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-24223",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-24223"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0004.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0004.html"
        }
      ],
      "release_date": "2025-05-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T01:13:18+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8496"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to memory corruption"
    },
    {
      "cve": "CVE-2025-24264",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2025-04-07T14:31:23.097000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2357918"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause an unexpected process crash due to improper memory handling.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-24264"
        },
        {
          "category": "external",
          "summary": "RHBZ#2357918",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2357918"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-24264",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-24264"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-24264",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-24264"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0003.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0003.html"
        }
      ],
      "release_date": "2025-04-07T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T01:13:18+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8496"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash"
    },
    {
      "cve": "CVE-2025-31204",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "discovery_date": "2025-05-15T13:04:43.281000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2366500"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause out-of-bounds memory access due to improper memory handling and result in memory corruption.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to memory corruption",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-31204"
        },
        {
          "category": "external",
          "summary": "RHBZ#2366500",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2366500"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-31204",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-31204"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-31204",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-31204"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0004.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0004.html"
        }
      ],
      "release_date": "2025-05-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T01:13:18+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8496"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to memory corruption"
    },
    {
      "cve": "CVE-2025-31206",
      "cwe": {
        "id": "CWE-843",
        "name": "Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)"
      },
      "discovery_date": "2025-05-15T13:06:54.355000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2366502"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a type confusion issue due to improper state handling and result in an unexpected crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-31206"
        },
        {
          "category": "external",
          "summary": "RHBZ#2366502",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2366502"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-31206",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-31206"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-31206",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-31206"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0004.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0004.html"
        }
      ],
      "release_date": "2025-05-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T01:13:18+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8496"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash"
    },
    {
      "cve": "CVE-2025-31215",
      "cwe": {
        "id": "CWE-476",
        "name": "NULL Pointer Dereference"
      },
      "discovery_date": "2025-05-15T13:07:56.027000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2366503"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a NULL pointer dereference due to improper checks, resulting in an unexpected process crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-31215"
        },
        {
          "category": "external",
          "summary": "RHBZ#2366503",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2366503"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-31215",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-31215"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-31215",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-31215"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0004.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0004.html"
        }
      ],
      "release_date": "2025-05-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T01:13:18+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8496"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43480",
      "cwe": {
        "id": "CWE-200",
        "name": "Exposure of Sensitive Information to an Unauthorized Actor"
      },
      "discovery_date": "2025-11-21T12:52:14.645000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2416338"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. A malicious website may exfiltrate data cross-origin due to improper checks.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: A malicious website may exfiltrate data cross-origin",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into visiting a malicious website, potentially exposing sensitive information. Due to this reason, this flaw has been rated with a moderate severity.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43480"
        },
        {
          "category": "external",
          "summary": "RHBZ#2416338",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2416338"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43480",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43480"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43480",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43480"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0008.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0008.html"
        }
      ],
      "release_date": "2025-11-20T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-10-28T01:13:18+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:8496"
        },
        {
          "category": "workaround",
          "details": "Do not visit untrusted websites. Also, do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi, and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and used via a graphical interface to process untrusted web content, via GNOME, for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.1-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.1-1.el9_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: A malicious website may exfiltrate data cross-origin"
    }
  ]
}

RHSA-2024:9646

Vulnerability from csaf_redhat - Published: 2024-11-14 12:02 - Updated: 2026-04-13 08:44

Summary

Red Hat Security Advisory: webkit2gtk3 security update

Severity

Important

Notes

Topic: An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details: WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fix(es): * webkitgtk: Memory corruption issue when processing web content (CVE-2022-32885) * webkitgtk: arbitrary javascript code execution (CVE-2023-40397) * webkitgtk: Arbitrary Remote Code Execution (CVE-2023-42917) * webkitgtk: Processing web content may lead to arbitrary code execution (CVE-2023-42852) * chromium-browser: Use after free in ANGLE (CVE-2024-4558) * webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2024-40789) * webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking (CVE-2024-40780) * webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking (CVE-2024-40779) * webkitgtk: webkit2gtk: Use-after-free was addressed with improved memory management (CVE-2024-40782) * webkitgtk: Processing web content may lead to arbitrary code execution (CVE-2024-27808) * webkitgtk: Processing web content may lead to arbitrary code execution (CVE-2024-27820) * webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution (CVE-2024-27833) * webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution (CVE-2024-27851) * webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2024-44185) * webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2024-44244) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2022-32885

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-20 - Improper Input Validation

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2023-40397

A vulnerability was found in WebKit. This flaw allows a remote attacker to cause arbitrary javascript code execution.

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-96 - Improper Neutralization of Directives in Statically Saved Code ('Static Code Injection')

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2023-42852

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2023-42875

A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory handling and result in arbitrary code execution.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2023-42917

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-787 - Out-of-bounds Write

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround

Threats

Exploit Status CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog

Impact Important

CVE-2023-42970

A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in arbitrary code execution.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2023-43000

A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in memory corruption.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround

Threats

Exploit Status CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog

Impact Important

CVE-2023-43010

A flaw was found in WebKitGTK. Processing malicious web content can cause memory corruption due to improper memory handling.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-120 - Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2024-4558

7.0 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2024-27808

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2024-27820

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2024-27833

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2024-27851

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2024-27856

A flaw was found in WebKitGTK. Processing malicious web content can cause unexpected app termination or arbitrary code execution due to improper checks.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-94 - Improper Control of Generation of Code ('Code Injection')

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2024-40779

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE-125 - Out-of-bounds Read

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2024-40780

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE-125 - Out-of-bounds Read

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2024-40782

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE-416 - Use After Free

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2024-40789

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE-125 - Out-of-bounds Read

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2024-44185

A vulnerability was found in WebKitGTK, where processing maliciously crafted web content may lead to the program crashing. Code execution is not discarded as a consequence.

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE-788 - Access of Memory Location After End of Buffer

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2024-44244

A vulnerability was found in WebKitGTK, where processing maliciously crafted web content may lead to program to a crash. This issue occurs because code execution is not discarded as consequence.

4.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

CWE-788 - Access of Memory Location After End of Buffer

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2024-54534

A flaw was found in WebKitGTK. Processing malicious web content can cause memory corruption due to improper memory handling.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-787 - Out-of-bounds Write

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2025-43480

A flaw was found in WebKitGTK. A malicious website may exfiltrate data cross-origin due to improper checks.

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

Affected products

Fixed 46 products

Product	Version	Remediation
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

References

135 references

URL	Category
https://access.redhat.com/errata/RHSA-2024:9646	self
https://access.redhat.com/security/updates/classi…	external
https://access.redhat.com/security/vulnerabilities/	external
https://bugzilla.redhat.com/show_bug.cgi?id=2236842	external
https://bugzilla.redhat.com/show_bug.cgi?id=2238945	external
https://bugzilla.redhat.com/show_bug.cgi?id=2253058	external
https://bugzilla.redhat.com/show_bug.cgi?id=2271456	external
https://bugzilla.redhat.com/show_bug.cgi?id=2279689	external
https://bugzilla.redhat.com/show_bug.cgi?id=2302067	external
https://bugzilla.redhat.com/show_bug.cgi?id=2302069	external
https://bugzilla.redhat.com/show_bug.cgi?id=2302070	external
https://bugzilla.redhat.com/show_bug.cgi?id=2302071	external
https://bugzilla.redhat.com/show_bug.cgi?id=2314697	external
https://bugzilla.redhat.com/show_bug.cgi?id=2314698	external
https://bugzilla.redhat.com/show_bug.cgi?id=2314700	external
https://bugzilla.redhat.com/show_bug.cgi?id=2314704	external
https://bugzilla.redhat.com/show_bug.cgi?id=2323263	external
https://bugzilla.redhat.com/show_bug.cgi?id=2323278	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2022-32885	self
https://bugzilla.redhat.com/show_bug.cgi?id=2236842	external
https://www.cve.org/CVERecord?id=CVE-2022-32885	external
https://nvd.nist.gov/vuln/detail/CVE-2022-32885	external
https://webkitgtk.org/security/WSA-2023-0003.html	external
https://access.redhat.com/security/cve/CVE-2023-40397	self
https://bugzilla.redhat.com/show_bug.cgi?id=2238945	external
https://www.cve.org/CVERecord?id=CVE-2023-40397	external
https://nvd.nist.gov/vuln/detail/CVE-2023-40397	external
https://wpewebkit.org/security/WSA-2023-0008.html	external
https://access.redhat.com/security/cve/CVE-2023-42852	self
https://bugzilla.redhat.com/show_bug.cgi?id=2271456	external
https://www.cve.org/CVERecord?id=CVE-2023-42852	external
https://nvd.nist.gov/vuln/detail/CVE-2023-42852	external
https://webkitgtk.org/security/WSA-2023-0010.html	external
https://access.redhat.com/security/cve/CVE-2023-42875	self
https://bugzilla.redhat.com/show_bug.cgi?id=2366497	external
https://www.cve.org/CVERecord?id=CVE-2023-42875	external
https://nvd.nist.gov/vuln/detail/CVE-2023-42875	external
https://webkitgtk.org/security/WSA-2025-0004.html	external
https://access.redhat.com/security/cve/CVE-2023-42917	self
https://bugzilla.redhat.com/show_bug.cgi?id=2253058	external
https://www.cve.org/CVERecord?id=CVE-2023-42917	external
https://nvd.nist.gov/vuln/detail/CVE-2023-42917	external
https://webkitgtk.org/security/WSA-2023-0011.html	external
https://www.cisa.gov/known-exploited-vulnerabilit…	external
https://access.redhat.com/security/cve/CVE-2023-42970	self
https://bugzilla.redhat.com/show_bug.cgi?id=2366498	external
https://www.cve.org/CVERecord?id=CVE-2023-42970	external
https://nvd.nist.gov/vuln/detail/CVE-2023-42970	external
https://access.redhat.com/security/cve/CVE-2023-43000	self
https://bugzilla.redhat.com/show_bug.cgi?id=2416324	external
https://www.cve.org/CVERecord?id=CVE-2023-43000	external
https://nvd.nist.gov/vuln/detail/CVE-2023-43000	external
https://webkitgtk.org/security/WSA-2025-0008.html	external
https://access.redhat.com/security/cve/CVE-2023-43010	self
https://bugzilla.redhat.com/show_bug.cgi?id=2448778	external
https://www.cve.org/CVERecord?id=CVE-2023-43010	external
https://nvd.nist.gov/vuln/detail/CVE-2023-43010	external
https://webkitgtk.org/security/WSA-2026-0001.html	external
https://access.redhat.com/security/cve/CVE-2024-4558	self
https://bugzilla.redhat.com/show_bug.cgi?id=2279689	external
https://www.cve.org/CVERecord?id=CVE-2024-4558	external
https://nvd.nist.gov/vuln/detail/CVE-2024-4558	external
https://access.redhat.com/security/cve/CVE-2024-27808	self
https://bugzilla.redhat.com/show_bug.cgi?id=2314697	external
https://www.cve.org/CVERecord?id=CVE-2024-27808	external
https://nvd.nist.gov/vuln/detail/CVE-2024-27808	external
https://webkitgtk.org/security/WSA-2024-0005.html	external
https://access.redhat.com/security/cve/CVE-2024-27820	self
https://bugzilla.redhat.com/show_bug.cgi?id=2314698	external
https://www.cve.org/CVERecord?id=CVE-2024-27820	external
https://nvd.nist.gov/vuln/detail/CVE-2024-27820	external
https://access.redhat.com/security/cve/CVE-2024-27833	self
https://bugzilla.redhat.com/show_bug.cgi?id=2314700	external
https://www.cve.org/CVERecord?id=CVE-2024-27833	external
https://nvd.nist.gov/vuln/detail/CVE-2024-27833	external
https://access.redhat.com/security/cve/CVE-2024-27851	self
https://bugzilla.redhat.com/show_bug.cgi?id=2314704	external
https://www.cve.org/CVERecord?id=CVE-2024-27851	external
https://nvd.nist.gov/vuln/detail/CVE-2024-27851	external
https://access.redhat.com/security/cve/CVE-2024-27856	self
https://bugzilla.redhat.com/show_bug.cgi?id=2344618	external
https://www.cve.org/CVERecord?id=CVE-2024-27856	external
https://nvd.nist.gov/vuln/detail/CVE-2024-27856	external
https://support.apple.com/en-us/120896	external
https://support.apple.com/en-us/120898	external
https://support.apple.com/en-us/120901	external
https://support.apple.com/en-us/120902	external
https://support.apple.com/en-us/120903	external
https://support.apple.com/en-us/120905	external
https://support.apple.com/en-us/120906	external
https://webkitgtk.org/security/WSA-2025-0001.html	external
https://access.redhat.com/security/cve/CVE-2024-40779	self
https://bugzilla.redhat.com/show_bug.cgi?id=2302070	external
https://www.cve.org/CVERecord?id=CVE-2024-40779	external
https://nvd.nist.gov/vuln/detail/CVE-2024-40779	external
https://webkitgtk.org/security/WSA-2024-0004.html…	external
https://access.redhat.com/security/cve/CVE-2024-40780	self
https://bugzilla.redhat.com/show_bug.cgi?id=2302069	external
https://www.cve.org/CVERecord?id=CVE-2024-40780	external
https://nvd.nist.gov/vuln/detail/CVE-2024-40780	external
https://webkitgtk.org/security/WSA-2024-0004.html…	external
https://access.redhat.com/security/cve/CVE-2024-40782	self
https://bugzilla.redhat.com/show_bug.cgi?id=2302071	external
https://www.cve.org/CVERecord?id=CVE-2024-40782	external
https://nvd.nist.gov/vuln/detail/CVE-2024-40782	external
https://webkitgtk.org/security/WSA-2024-0004.html…	external
https://access.redhat.com/security/cve/CVE-2024-40789	self
https://bugzilla.redhat.com/show_bug.cgi?id=2302067	external
https://www.cve.org/CVERecord?id=CVE-2024-40789	external
https://nvd.nist.gov/vuln/detail/CVE-2024-40789	external
https://webkitgtk.org/security/WSA-2024-0004.html…	external
https://access.redhat.com/security/cve/CVE-2024-44185	self
https://bugzilla.redhat.com/show_bug.cgi?id=2323263	external
https://www.cve.org/CVERecord?id=CVE-2024-44185	external
https://nvd.nist.gov/vuln/detail/CVE-2024-44185	external
https://webkitgtk.org/security/WSA-2024-0006.html	external
https://access.redhat.com/security/cve/CVE-2024-44244	self
https://bugzilla.redhat.com/show_bug.cgi?id=2323278	external
https://www.cve.org/CVERecord?id=CVE-2024-44244	external
https://nvd.nist.gov/vuln/detail/CVE-2024-44244	external
https://access.redhat.com/security/cve/CVE-2024-54534	self
https://bugzilla.redhat.com/show_bug.cgi?id=2333846	external
https://www.cve.org/CVERecord?id=CVE-2024-54534	external
https://nvd.nist.gov/vuln/detail/CVE-2024-54534	external
https://support.apple.com/en-us/121837	external
https://support.apple.com/en-us/121839	external
https://support.apple.com/en-us/121843	external
https://support.apple.com/en-us/121844	external
https://support.apple.com/en-us/121845	external
https://support.apple.com/en-us/121846	external
https://access.redhat.com/security/cve/CVE-2025-43480	self
https://bugzilla.redhat.com/show_bug.cgi?id=2416338	external
https://www.cve.org/CVERecord?id=CVE-2025-43480	external
https://nvd.nist.gov/vuln/detail/CVE-2025-43480	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 8.8 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform.\n\nSecurity Fix(es):\n\n* webkitgtk: Memory corruption issue when processing web content (CVE-2022-32885)\n\n* webkitgtk: arbitrary javascript code execution (CVE-2023-40397)\n\n* webkitgtk: Arbitrary Remote Code Execution (CVE-2023-42917)\n\n* webkitgtk: Processing web content may lead to arbitrary code execution (CVE-2023-42852)\n\n* chromium-browser: Use after free in ANGLE (CVE-2024-4558)\n\n* webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2024-40789)\n\n* webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking (CVE-2024-40780)\n\n* webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking (CVE-2024-40779)\n\n* webkitgtk: webkit2gtk: Use-after-free was addressed with improved memory management (CVE-2024-40782)\n\n* webkitgtk: Processing web content may lead to arbitrary code execution (CVE-2024-27808)\n\n* webkitgtk: Processing web content may lead to arbitrary code execution (CVE-2024-27820)\n\n* webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution (CVE-2024-27833)\n\n* webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution (CVE-2024-27851)\n\n* webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2024-44185)\n\n* webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2024-44244)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2024:9646",
        "url": "https://access.redhat.com/errata/RHSA-2024:9646"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/vulnerabilities/",
        "url": "https://access.redhat.com/security/vulnerabilities/"
      },
      {
        "category": "external",
        "summary": "2236842",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2236842"
      },
      {
        "category": "external",
        "summary": "2238945",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2238945"
      },
      {
        "category": "external",
        "summary": "2253058",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2253058"
      },
      {
        "category": "external",
        "summary": "2271456",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271456"
      },
      {
        "category": "external",
        "summary": "2279689",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279689"
      },
      {
        "category": "external",
        "summary": "2302067",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302067"
      },
      {
        "category": "external",
        "summary": "2302069",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302069"
      },
      {
        "category": "external",
        "summary": "2302070",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302070"
      },
      {
        "category": "external",
        "summary": "2302071",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302071"
      },
      {
        "category": "external",
        "summary": "2314697",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314697"
      },
      {
        "category": "external",
        "summary": "2314698",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314698"
      },
      {
        "category": "external",
        "summary": "2314700",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314700"
      },
      {
        "category": "external",
        "summary": "2314704",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314704"
      },
      {
        "category": "external",
        "summary": "2323263",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2323263"
      },
      {
        "category": "external",
        "summary": "2323278",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2323278"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_9646.json"
      }
    ],
    "title": "Red Hat Security Advisory: webkit2gtk3 security update",
    "tracking": {
      "current_release_date": "2026-04-13T08:44:41+00:00",
      "generator": {
        "date": "2026-04-13T08:44:41+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.7.5"
        }
      },
      "id": "RHSA-2024:9646",
      "initial_release_date": "2024-11-14T12:02:15+00:00",
      "revision_history": [
        {
          "date": "2024-11-14T12:02:15+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2024-11-14T12:02:15+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-04-13T08:44:41+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream EUS (v.8.8)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream EUS (v.8.8)",
                  "product_id": "AppStream-8.8.0.Z.EUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_eus:8.8::appstream"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.46.3-1.el8_8.src",
                "product": {
                  "name": "webkit2gtk3-0:2.46.3-1.el8_8.src",
                  "product_id": "webkit2gtk3-0:2.46.3-1.el8_8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.46.3-1.el8_8?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
                "product": {
                  "name": "webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
                  "product_id": "webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.46.3-1.el8_8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
                  "product_id": "webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.46.3-1.el8_8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
                  "product_id": "webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.46.3-1.el8_8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.46.3-1.el8_8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
                  "product_id": "webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.46.3-1.el8_8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
                  "product_id": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.46.3-1.el8_8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.46.3-1.el8_8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.46.3-1.el8_8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.46.3-1.el8_8?arch=aarch64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
                "product": {
                  "name": "webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
                  "product_id": "webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.46.3-1.el8_8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
                  "product_id": "webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.46.3-1.el8_8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
                  "product_id": "webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.46.3-1.el8_8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.46.3-1.el8_8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
                  "product_id": "webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.46.3-1.el8_8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
                  "product_id": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.46.3-1.el8_8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.46.3-1.el8_8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.46.3-1.el8_8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.46.3-1.el8_8?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.46.3-1.el8_8.i686",
                "product": {
                  "name": "webkit2gtk3-0:2.46.3-1.el8_8.i686",
                  "product_id": "webkit2gtk3-0:2.46.3-1.el8_8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.46.3-1.el8_8?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
                  "product_id": "webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.46.3-1.el8_8?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
                  "product_id": "webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.46.3-1.el8_8?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.46.3-1.el8_8?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
                  "product_id": "webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.46.3-1.el8_8?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
                  "product_id": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.46.3-1.el8_8?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.46.3-1.el8_8?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.46.3-1.el8_8?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.46.3-1.el8_8?arch=i686"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i686"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
                "product": {
                  "name": "webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
                  "product_id": "webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.46.3-1.el8_8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
                  "product_id": "webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.46.3-1.el8_8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
                  "product_id": "webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.46.3-1.el8_8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.46.3-1.el8_8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
                  "product_id": "webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.46.3-1.el8_8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
                  "product_id": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.46.3-1.el8_8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.46.3-1.el8_8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.46.3-1.el8_8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.46.3-1.el8_8?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.46.3-1.el8_8.s390x",
                "product": {
                  "name": "webkit2gtk3-0:2.46.3-1.el8_8.s390x",
                  "product_id": "webkit2gtk3-0:2.46.3-1.el8_8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.46.3-1.el8_8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
                  "product_id": "webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.46.3-1.el8_8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
                  "product_id": "webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.46.3-1.el8_8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.46.3-1.el8_8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
                  "product_id": "webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.46.3-1.el8_8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
                  "product_id": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.46.3-1.el8_8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.46.3-1.el8_8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.46.3-1.el8_8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.46.3-1.el8_8?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.46.3-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64"
        },
        "product_reference": "webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.46.3-1.el8_8.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686"
        },
        "product_reference": "webkit2gtk3-0:2.46.3-1.el8_8.i686",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.46.3-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le"
        },
        "product_reference": "webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.46.3-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x"
        },
        "product_reference": "webkit2gtk3-0:2.46.3-1.el8_8.s390x",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.46.3-1.el8_8.src as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src"
        },
        "product_reference": "webkit2gtk3-0:2.46.3-1.el8_8.src",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.46.3-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64"
        },
        "product_reference": "webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64"
        },
        "product_reference": "webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.46.3-1.el8_8.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686"
        },
        "product_reference": "webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le"
        },
        "product_reference": "webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x"
        },
        "product_reference": "webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-32885",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "discovery_date": "2023-09-01T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2236842"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKitGTK. This security issue occurs when processing maliciously crafted web content that may lead to arbitrary code execution. This memory corruption issue was addressed with improved validation.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Memory corruption issue when processing web content",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This flaw is being rated as \u0027Moderate\u0027 as WebKitGTK package is shipped as a dependency for Gnome package, additionally Red Hat Enterprise Linux doesn\u0027t ship any WebKitGTK based web browser where this flaw would present a higher severity major threat.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-32885"
        },
        {
          "category": "external",
          "summary": "RHBZ#2236842",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2236842"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-32885",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-32885"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-32885",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32885"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2023-0003.html",
          "url": "https://webkitgtk.org/security/WSA-2023-0003.html"
        }
      ],
      "release_date": "2023-04-21T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:02:15+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9646"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: Memory corruption issue when processing web content"
    },
    {
      "cve": "CVE-2023-40397",
      "cwe": {
        "id": "CWE-96",
        "name": "Improper Neutralization of Directives in Statically Saved Code (\u0027Static Code Injection\u0027)"
      },
      "discovery_date": "2023-09-14T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2238945"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKit. This flaw allows a remote attacker to cause arbitrary javascript code execution.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: arbitrary javascript code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This flaw is being rated as \u0027Moderate\u0027 as WebKitGTK package is shipped as a dependency for Gnome package. Additionally, Red Hat Enterprise Linux doesn\u0027t ship any WebKitGTK based web browser where this flaw would present a higher severity major threat.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-40397"
        },
        {
          "category": "external",
          "summary": "RHBZ#2238945",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2238945"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-40397",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-40397"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-40397",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-40397"
        },
        {
          "category": "external",
          "summary": "https://wpewebkit.org/security/WSA-2023-0008.html",
          "url": "https://wpewebkit.org/security/WSA-2023-0008.html"
        }
      ],
      "release_date": "2023-09-06T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:02:15+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9646"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: arbitrary javascript code execution"
    },
    {
      "cve": "CVE-2023-42852",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2024-03-25T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2271456"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKitGTK and WPE WebKit, which allows remote attacker to perform arbitrary code execution when processing web content. This vulnerability caused by insufficient checks, which could be exploited by attackers to execute malicious code on affected systems.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated important because it affects the confidentiality, integrity, and availability (CIA) of systems, with a high severity rating.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-42852"
        },
        {
          "category": "external",
          "summary": "RHBZ#2271456",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271456"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-42852",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-42852"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-42852",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42852"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2023-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2023-0010.html"
        }
      ],
      "release_date": "2023-11-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:02:15+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9646"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2023-42875",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2025-05-15T12:59:19.828000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2366497"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory handling and result in arbitrary code execution.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-42875"
        },
        {
          "category": "external",
          "summary": "RHBZ#2366497",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2366497"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-42875",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-42875"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-42875",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42875"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0004.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0004.html"
        }
      ],
      "release_date": "2025-05-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:02:15+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9646"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2023-42917",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "discovery_date": "2023-12-05T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2253058"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content may lead to remote code execution. This vulnerability is known to be actively exploited in the wild and was included in the CISA\u0027s KEV catalog.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Arbitrary Remote Code Execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "All versions of Red Hat Enterprise Linux are affected to this vulnerability. To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content. For this reason, this flaw was rated with an important, and not critical, severity.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-42917"
        },
        {
          "category": "external",
          "summary": "RHBZ#2253058",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2253058"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-42917",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-42917"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-42917",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42917"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2023-0011.html",
          "url": "https://webkitgtk.org/security/WSA-2023-0011.html"
        },
        {
          "category": "external",
          "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
          "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        }
      ],
      "release_date": "2023-12-05T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:02:15+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9646"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "exploit_status",
          "date": "2023-12-04T00:00:00+00:00",
          "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        },
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Arbitrary Remote Code Execution"
    },
    {
      "cve": "CVE-2023-42970",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2025-05-15T13:01:32.590000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2366498"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in arbitrary code execution.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-42970"
        },
        {
          "category": "external",
          "summary": "RHBZ#2366498",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2366498"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-42970",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-42970"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-42970",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42970"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0004.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0004.html"
        }
      ],
      "release_date": "2025-05-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:02:15+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9646"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2023-43000",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2025-11-21T12:36:58.206000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2416324"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in memory corruption.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to memory corruption",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause memory corruption and the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-43000"
        },
        {
          "category": "external",
          "summary": "RHBZ#2416324",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2416324"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-43000",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-43000"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-43000",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-43000"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0008.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0008.html"
        },
        {
          "category": "external",
          "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
          "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        }
      ],
      "release_date": "2025-11-20T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:02:15+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9646"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "exploit_status",
          "date": "2026-03-05T00:00:00+00:00",
          "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        },
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to memory corruption"
    },
    {
      "cve": "CVE-2023-43010",
      "cwe": {
        "id": "CWE-120",
        "name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
      },
      "discovery_date": "2026-03-18T19:58:01.296000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2448778"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause memory corruption due to improper memory handling.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to memory corruption",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause memory corruption and the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-43010"
        },
        {
          "category": "external",
          "summary": "RHBZ#2448778",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2448778"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-43010",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-43010"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-43010",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-43010"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2026-0001.html",
          "url": "https://webkitgtk.org/security/WSA-2026-0001.html"
        }
      ],
      "release_date": "2026-03-18T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:02:15+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9646"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to memory corruption"
    },
    {
      "cve": "CVE-2024-4558",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2024-05-08T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2279689"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "There\u0027s a flaw in the Angle package where processing maliciously crafted web content may lead to a use-after-free. A remote attacker may leverage that to exploit heap corruption related bugs, such as crashing the application or remote code execution.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "chromium-browser: Use after free in ANGLE",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-4558"
        },
        {
          "category": "external",
          "summary": "RHBZ#2279689",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279689"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-4558",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-4558"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-4558",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-4558"
        }
      ],
      "release_date": "2024-05-07T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:02:15+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9646"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.0,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "chromium-browser: Use after free in ANGLE"
    },
    {
      "cve": "CVE-2024-27808",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2024-09-25T15:36:18.356000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2314697"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKit. This flaw allows a remote attacker to perform arbitrary code execution when processing web content. This flaw is caused by insufficient memory handling, which attackers could exploit to execute malicious code on affected systems.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This WebKit vulnerability marked as important because it enables remote attackers to execute malicious code on users\u0027 systems just by visiting compromised websites, posing significant risks like data theft and system compromise.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-27808"
        },
        {
          "category": "external",
          "summary": "RHBZ#2314697",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314697"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-27808",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-27808"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-27808",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27808"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0005.html",
          "url": "https://webkitgtk.org/security/WSA-2024-0005.html"
        }
      ],
      "release_date": "2024-09-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:02:15+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9646"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2024-27820",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2024-09-25T15:37:48.081000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2314698"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKit. This flaw allows a remote attacker to perform arbitrary code execution when processing web content. This flaw is caused by insufficient memory handling, which attackers could exploit to execute malicious code on affected systems.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This WebKit vulnerability marked as important because it enables remote attackers to execute malicious code on users\u0027 systems just by visiting compromised websites, posing significant risks like data theft and system compromise.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-27820"
        },
        {
          "category": "external",
          "summary": "RHBZ#2314698",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314698"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-27820",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-27820"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-27820",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27820"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0005.html",
          "url": "https://webkitgtk.org/security/WSA-2024-0005.html"
        }
      ],
      "release_date": "2024-09-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:02:15+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9646"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2024-27833",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2024-09-25T15:40:34.042000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2314700"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKit. This flaw allows a remote attacker to perform arbitrary code execution when processing web content. This flaw is caused by insufficient input validation, which attackers could exploit to execute malicious code on affected systems.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This WebKit vulnerability marked as important because it enables remote attackers to execute malicious code on users\u0027 systems just by visiting compromised websites, posing significant risks like data theft and system compromise.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-27833"
        },
        {
          "category": "external",
          "summary": "RHBZ#2314700",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314700"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-27833",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-27833"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-27833",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27833"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0005.html",
          "url": "https://webkitgtk.org/security/WSA-2024-0005.html"
        }
      ],
      "release_date": "2024-09-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:02:15+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9646"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2024-27851",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2024-09-25T15:44:41.235000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2314704"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKit. This flaw allows a remote attacker to perform arbitrary code execution when processing web content. This flaw is caused by insufficient bounds checks, which could be exploited by attackers to execute malicious code on affected systems.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This WebKit vulnerability marked as important because it enables remote attackers to execute malicious code on users\u0027 systems just by visiting compromised websites, posing significant risks like data theft and system compromise.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-27851"
        },
        {
          "category": "external",
          "summary": "RHBZ#2314704",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314704"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-27851",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-27851"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-27851",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27851"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0005.html",
          "url": "https://webkitgtk.org/security/WSA-2024-0005.html"
        }
      ],
      "release_date": "2024-09-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:02:15+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9646"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2024-27856",
      "cwe": {
        "id": "CWE-94",
        "name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
      },
      "discovery_date": "2025-02-10T09:34:34.705418+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2344618"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause unexpected app termination or arbitrary code execution due to improper checks.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing a file may lead to unexpected app termination or arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-27856"
        },
        {
          "category": "external",
          "summary": "RHBZ#2344618",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2344618"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-27856",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-27856"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-27856",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27856"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/120896",
          "url": "https://support.apple.com/en-us/120896"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/120898",
          "url": "https://support.apple.com/en-us/120898"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/120901",
          "url": "https://support.apple.com/en-us/120901"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/120902",
          "url": "https://support.apple.com/en-us/120902"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/120903",
          "url": "https://support.apple.com/en-us/120903"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/120905",
          "url": "https://support.apple.com/en-us/120905"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/120906",
          "url": "https://support.apple.com/en-us/120906"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0001.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0001.html"
        }
      ],
      "release_date": "2025-01-15T19:35:57.075000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:02:15+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9646"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing a file may lead to unexpected app termination or arbitrary code execution"
    },
    {
      "cve": "CVE-2024-40779",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "discovery_date": "2024-07-31T15:05:50+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2302070"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can trigger an out-of-bounds read due to improper bounds checking, causing an unexpected process crash, resulting in a denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-40779"
        },
        {
          "category": "external",
          "summary": "RHBZ#2302070",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302070"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-40779",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-40779"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-40779",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-40779"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40779",
          "url": "https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40779"
        }
      ],
      "release_date": "2024-07-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:02:15+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9646"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking"
    },
    {
      "cve": "CVE-2024-40780",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "discovery_date": "2024-07-31T15:07:22+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2302069"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can trigger an out-of-bounds read due to improper bounds checking, causing an unexpected process crash, resulting in a denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-40780"
        },
        {
          "category": "external",
          "summary": "RHBZ#2302069",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302069"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-40780",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-40780"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-40780",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-40780"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40780",
          "url": "https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40780"
        }
      ],
      "release_date": "2024-07-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:02:15+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9646"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking"
    },
    {
      "cve": "CVE-2024-40782",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2024-07-31T14:57:24+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2302071"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can trigger a use-after-free issue due to improper bounds checking, causing an unexpected process crash, resulting in a denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: webkit2gtk: Use-after-free was addressed with improved memory management",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-40782"
        },
        {
          "category": "external",
          "summary": "RHBZ#2302071",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302071"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-40782",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-40782"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-40782",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-40782"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40782",
          "url": "https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40782"
        }
      ],
      "release_date": "2024-07-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:02:15+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9646"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: webkit2gtk: Use-after-free was addressed with improved memory management"
    },
    {
      "cve": "CVE-2024-40789",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "discovery_date": "2024-07-31T15:39:05+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2302067"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can trigger an out-of-bounds read due to improper bounds checking, causing an unexpected process crash, resulting in a denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-40789"
        },
        {
          "category": "external",
          "summary": "RHBZ#2302067",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302067"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-40789",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-40789"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-40789",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-40789"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40789",
          "url": "https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40789"
        }
      ],
      "release_date": "2024-07-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:02:15+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9646"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2024-44185",
      "cwe": {
        "id": "CWE-788",
        "name": "Access of Memory Location After End of Buffer"
      },
      "discovery_date": "2024-11-01T20:05:39.339000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2323263"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKitGTK, where processing maliciously crafted web content may lead to the program crashing. Code execution is not discarded as a consequence.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated as important severity because it allows maliciously crafted web content to crash the application, potentially leads to denial of service. While it does not compromise confidentiality or integrity, the ability to crash the program without requiring authentication poses a significant risk.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-44185"
        },
        {
          "category": "external",
          "summary": "RHBZ#2323263",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2323263"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-44185",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-44185"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-44185",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-44185"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0006.html",
          "url": "https://webkitgtk.org/security/WSA-2024-0006.html"
        }
      ],
      "release_date": "2024-10-31T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:02:15+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9646"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2024-44244",
      "cwe": {
        "id": "CWE-788",
        "name": "Access of Memory Location After End of Buffer"
      },
      "discovery_date": "2024-11-01T21:06:58.389000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2323278"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKitGTK, where processing maliciously crafted web content may lead to program to a crash. This issue occurs because code execution is not discarded as consequence.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-44244"
        },
        {
          "category": "external",
          "summary": "RHBZ#2323278",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2323278"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-44244",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-44244"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-44244",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-44244"
        }
      ],
      "release_date": "2024-01-31T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:02:15+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9646"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2024-54534",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "discovery_date": "2024-12-23T13:18:32.596325+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2333846"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause memory corruption due to improper memory handling.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkit: Processing maliciously crafted web content may lead to memory corruption",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-54534"
        },
        {
          "category": "external",
          "summary": "RHBZ#2333846",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2333846"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-54534",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-54534"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-54534",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-54534"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/121837",
          "url": "https://support.apple.com/en-us/121837"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/121839",
          "url": "https://support.apple.com/en-us/121839"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/121843",
          "url": "https://support.apple.com/en-us/121843"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/121844",
          "url": "https://support.apple.com/en-us/121844"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/121845",
          "url": "https://support.apple.com/en-us/121845"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/121846",
          "url": "https://support.apple.com/en-us/121846"
        }
      ],
      "release_date": "2024-12-11T22:58:39.974000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:02:15+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9646"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkit: Processing maliciously crafted web content may lead to memory corruption"
    },
    {
      "cve": "CVE-2025-43480",
      "cwe": {
        "id": "CWE-200",
        "name": "Exposure of Sensitive Information to an Unauthorized Actor"
      },
      "discovery_date": "2025-11-21T12:52:14.645000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2416338"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. A malicious website may exfiltrate data cross-origin due to improper checks.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: A malicious website may exfiltrate data cross-origin",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into visiting a malicious website, potentially exposing sensitive information. Due to this reason, this flaw has been rated with a moderate severity.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
          "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43480"
        },
        {
          "category": "external",
          "summary": "RHBZ#2416338",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2416338"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43480",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43480"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43480",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43480"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0008.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0008.html"
        }
      ],
      "release_date": "2025-11-20T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:02:15+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9646"
        },
        {
          "category": "workaround",
          "details": "Do not visit untrusted websites. Also, do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi, and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and used via a graphical interface to process untrusted web content, via GNOME, for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.src",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.aarch64",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.i686",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.s390x",
            "AppStream-8.8.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: A malicious website may exfiltrate data cross-origin"
    }
  ]
}

RHSA-2024:9653

Vulnerability from csaf_redhat - Published: 2024-11-14 12:21 - Updated: 2026-04-13 08:44

Summary

Red Hat Security Advisory: webkit2gtk3 security update

Severity

Important

Notes

Topic: An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details: WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fix(es): * webkitgtk: Memory corruption issue when processing web content (CVE-2022-32885) * webkitgtk: arbitrary javascript code execution (CVE-2023-40397) * webkitgtk: Arbitrary Remote Code Execution (CVE-2023-42917) * webkitgtk: type confusion may lead to arbitrary code execution (CVE-2024-23222) * webkitgtk: Processing web content may lead to arbitrary code execution (CVE-2023-42852) * chromium-browser: Use after free in ANGLE (CVE-2024-4558) * webkitgtk: webkit2gtk: Use after free may lead to Remote Code Execution (CVE-2024-40776) * webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2024-40789) * webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking (CVE-2024-40780) * webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking (CVE-2024-40779) * webkitgtk: webkit2gtk: Use-after-free was addressed with improved memory management (CVE-2024-40782) * webkitgtk: Processing web content may lead to arbitrary code execution (CVE-2024-27808) * webkitgtk: Processing web content may lead to arbitrary code execution (CVE-2024-27820) * webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution (CVE-2024-27833) * webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution (CVE-2024-27851) * webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2024-44185) * webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2024-44244) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2022-32885

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-20 - Improper Input Validation

Affected products

Fixed 84 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2022-48503

A vulnerability was found in webkitgtk. This issue occurs when processing web content, which may lead to arbitrary code execution.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-94 - Improper Control of Generation of Code ('Code Injection')

Affected products

Fixed 84 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround

Threats

Exploit Status CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog

Impact Important

CVE-2023-40397

A vulnerability was found in WebKit. This flaw allows a remote attacker to cause arbitrary javascript code execution.

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-96 - Improper Neutralization of Directives in Statically Saved Code ('Static Code Injection')

Affected products

Fixed 84 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2023-42852

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Affected products

Fixed 84 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2023-42875

A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory handling and result in arbitrary code execution.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Affected products

Fixed 84 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2023-42917

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-787 - Out-of-bounds Write

Affected products

Fixed 84 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround

Threats

Exploit Status CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog

Impact Important

CVE-2023-42970

A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in arbitrary code execution.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Affected products

Fixed 84 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2023-43000

A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in memory corruption.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Affected products

Fixed 84 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround

Threats

Exploit Status CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog

Impact Important

CVE-2023-43010

A flaw was found in WebKitGTK. Processing malicious web content can cause memory corruption due to improper memory handling.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-120 - Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

Affected products

Fixed 84 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2024-4558

7.0 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Affected products

Fixed 84 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2024-23222

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-843 - Access of Resource Using Incompatible Type ('Type Confusion')

Affected products

Fixed 84 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround

Threats

Exploit Status CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog

Impact Important

CVE-2024-27808

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Affected products

Fixed 84 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2024-27820

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Affected products

Fixed 84 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2024-27833

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Affected products

Fixed 84 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2024-27851

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Affected products

Fixed 84 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2024-27856

A flaw was found in WebKitGTK. Processing malicious web content can cause unexpected app termination or arbitrary code execution due to improper checks.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-94 - Improper Control of Generation of Code ('Code Injection')

Affected products

Fixed 84 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2024-40776

A vulnerability was found in WebKitGTK. A use-after-free may lead to Remote Code Execution. Users are advised to avoid processing untrusted web content in WebKitGTK.

4.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

Affected products

Fixed 84 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2024-40779

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE-125 - Out-of-bounds Read

Affected products

Fixed 84 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2024-40780

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE-125 - Out-of-bounds Read

Affected products

Fixed 84 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2024-40782

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE-416 - Use After Free

Affected products

Fixed 84 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2024-40789

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE-125 - Out-of-bounds Read

Affected products

Fixed 84 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2024-44185

A vulnerability was found in WebKitGTK, where processing maliciously crafted web content may lead to the program crashing. Code execution is not discarded as a consequence.

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE-788 - Access of Memory Location After End of Buffer

Affected products

Fixed 84 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2024-44244

A vulnerability was found in WebKitGTK, where processing maliciously crafted web content may lead to program to a crash. This issue occurs because code execution is not discarded as consequence.

4.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

CWE-788 - Access of Memory Location After End of Buffer

Affected products

Fixed 84 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2024-54534

A flaw was found in WebKitGTK. Processing malicious web content can cause memory corruption due to improper memory handling.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-787 - Out-of-bounds Write

Affected products

Fixed 84 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2025-24223

A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory handling and result in memory corruption.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Affected products

Fixed 84 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2025-24264

A flaw was found in WebKitGTK. Processing malicious web content can cause an unexpected process crash due to improper memory handling.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Affected products

Fixed 84 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2025-31204

A flaw was found in WebKitGTK. Processing malicious web content can cause out-of-bounds memory access due to improper memory handling and result in memory corruption.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-787 - Out-of-bounds Write

Affected products

Fixed 84 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2025-31206

A flaw was found in WebKitGTK. Processing malicious web content can cause a type confusion issue due to improper state handling and result in an unexpected crash.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-843 - Access of Resource Using Incompatible Type ('Type Confusion')

Affected products

Fixed 84 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2025-31215

A flaw was found in WebKitGTK. Processing malicious web content can cause a NULL pointer dereference due to improper checks, resulting in an unexpected process crash.

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE-476 - NULL Pointer Dereference

Affected products

Fixed 84 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2025-43480

A flaw was found in WebKitGTK. A malicious website may exfiltrate data cross-origin due to improper checks.

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

Affected products

Fixed 84 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

References

172 references

URL	Category
https://access.redhat.com/errata/RHSA-2024:9653	self
https://access.redhat.com/security/updates/classi…	external
https://access.redhat.com/security/vulnerabilities/	external
https://bugzilla.redhat.com/show_bug.cgi?id=2236842	external
https://bugzilla.redhat.com/show_bug.cgi?id=2238945	external
https://bugzilla.redhat.com/show_bug.cgi?id=2253058	external
https://bugzilla.redhat.com/show_bug.cgi?id=2259893	external
https://bugzilla.redhat.com/show_bug.cgi?id=2271456	external
https://bugzilla.redhat.com/show_bug.cgi?id=2279689	external
https://bugzilla.redhat.com/show_bug.cgi?id=2301841	external
https://bugzilla.redhat.com/show_bug.cgi?id=2302067	external
https://bugzilla.redhat.com/show_bug.cgi?id=2302069	external
https://bugzilla.redhat.com/show_bug.cgi?id=2302070	external
https://bugzilla.redhat.com/show_bug.cgi?id=2302071	external
https://bugzilla.redhat.com/show_bug.cgi?id=2314697	external
https://bugzilla.redhat.com/show_bug.cgi?id=2314698	external
https://bugzilla.redhat.com/show_bug.cgi?id=2314700	external
https://bugzilla.redhat.com/show_bug.cgi?id=2314704	external
https://bugzilla.redhat.com/show_bug.cgi?id=2323263	external
https://bugzilla.redhat.com/show_bug.cgi?id=2323278	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2022-32885	self
https://bugzilla.redhat.com/show_bug.cgi?id=2236842	external
https://www.cve.org/CVERecord?id=CVE-2022-32885	external
https://nvd.nist.gov/vuln/detail/CVE-2022-32885	external
https://webkitgtk.org/security/WSA-2023-0003.html	external
https://access.redhat.com/security/cve/CVE-2022-48503	self
https://bugzilla.redhat.com/show_bug.cgi?id=2218623	external
https://www.cve.org/CVERecord?id=CVE-2022-48503	external
https://nvd.nist.gov/vuln/detail/CVE-2022-48503	external
https://www.cisa.gov/known-exploited-vulnerabilit…	external
https://access.redhat.com/security/cve/CVE-2023-40397	self
https://bugzilla.redhat.com/show_bug.cgi?id=2238945	external
https://www.cve.org/CVERecord?id=CVE-2023-40397	external
https://nvd.nist.gov/vuln/detail/CVE-2023-40397	external
https://wpewebkit.org/security/WSA-2023-0008.html	external
https://access.redhat.com/security/cve/CVE-2023-42852	self
https://bugzilla.redhat.com/show_bug.cgi?id=2271456	external
https://www.cve.org/CVERecord?id=CVE-2023-42852	external
https://nvd.nist.gov/vuln/detail/CVE-2023-42852	external
https://webkitgtk.org/security/WSA-2023-0010.html	external
https://access.redhat.com/security/cve/CVE-2023-42875	self
https://bugzilla.redhat.com/show_bug.cgi?id=2366497	external
https://www.cve.org/CVERecord?id=CVE-2023-42875	external
https://nvd.nist.gov/vuln/detail/CVE-2023-42875	external
https://webkitgtk.org/security/WSA-2025-0004.html	external
https://access.redhat.com/security/cve/CVE-2023-42917	self
https://bugzilla.redhat.com/show_bug.cgi?id=2253058	external
https://www.cve.org/CVERecord?id=CVE-2023-42917	external
https://nvd.nist.gov/vuln/detail/CVE-2023-42917	external
https://webkitgtk.org/security/WSA-2023-0011.html	external
https://access.redhat.com/security/cve/CVE-2023-42970	self
https://bugzilla.redhat.com/show_bug.cgi?id=2366498	external
https://www.cve.org/CVERecord?id=CVE-2023-42970	external
https://nvd.nist.gov/vuln/detail/CVE-2023-42970	external
https://access.redhat.com/security/cve/CVE-2023-43000	self
https://bugzilla.redhat.com/show_bug.cgi?id=2416324	external
https://www.cve.org/CVERecord?id=CVE-2023-43000	external
https://nvd.nist.gov/vuln/detail/CVE-2023-43000	external
https://webkitgtk.org/security/WSA-2025-0008.html	external
https://access.redhat.com/security/cve/CVE-2023-43010	self
https://bugzilla.redhat.com/show_bug.cgi?id=2448778	external
https://www.cve.org/CVERecord?id=CVE-2023-43010	external
https://nvd.nist.gov/vuln/detail/CVE-2023-43010	external
https://webkitgtk.org/security/WSA-2026-0001.html	external
https://access.redhat.com/security/cve/CVE-2024-4558	self
https://bugzilla.redhat.com/show_bug.cgi?id=2279689	external
https://www.cve.org/CVERecord?id=CVE-2024-4558	external
https://nvd.nist.gov/vuln/detail/CVE-2024-4558	external
https://access.redhat.com/security/cve/CVE-2024-23222	self
https://bugzilla.redhat.com/show_bug.cgi?id=2259893	external
https://www.cve.org/CVERecord?id=CVE-2024-23222	external
https://nvd.nist.gov/vuln/detail/CVE-2024-23222	external
https://webkitgtk.org/security/WSA-2024-0001.html	external
https://access.redhat.com/security/cve/CVE-2024-27808	self
https://bugzilla.redhat.com/show_bug.cgi?id=2314697	external
https://www.cve.org/CVERecord?id=CVE-2024-27808	external
https://nvd.nist.gov/vuln/detail/CVE-2024-27808	external
https://webkitgtk.org/security/WSA-2024-0005.html	external
https://access.redhat.com/security/cve/CVE-2024-27820	self
https://bugzilla.redhat.com/show_bug.cgi?id=2314698	external
https://www.cve.org/CVERecord?id=CVE-2024-27820	external
https://nvd.nist.gov/vuln/detail/CVE-2024-27820	external
https://access.redhat.com/security/cve/CVE-2024-27833	self
https://bugzilla.redhat.com/show_bug.cgi?id=2314700	external
https://www.cve.org/CVERecord?id=CVE-2024-27833	external
https://nvd.nist.gov/vuln/detail/CVE-2024-27833	external
https://access.redhat.com/security/cve/CVE-2024-27851	self
https://bugzilla.redhat.com/show_bug.cgi?id=2314704	external
https://www.cve.org/CVERecord?id=CVE-2024-27851	external
https://nvd.nist.gov/vuln/detail/CVE-2024-27851	external
https://access.redhat.com/security/cve/CVE-2024-27856	self
https://bugzilla.redhat.com/show_bug.cgi?id=2344618	external
https://www.cve.org/CVERecord?id=CVE-2024-27856	external
https://nvd.nist.gov/vuln/detail/CVE-2024-27856	external
https://support.apple.com/en-us/120896	external
https://support.apple.com/en-us/120898	external
https://support.apple.com/en-us/120901	external
https://support.apple.com/en-us/120902	external
https://support.apple.com/en-us/120903	external
https://support.apple.com/en-us/120905	external
https://support.apple.com/en-us/120906	external
https://webkitgtk.org/security/WSA-2025-0001.html	external
https://access.redhat.com/security/cve/CVE-2024-40776	self
https://bugzilla.redhat.com/show_bug.cgi?id=2301841	external
https://www.cve.org/CVERecord?id=CVE-2024-40776	external
https://nvd.nist.gov/vuln/detail/CVE-2024-40776	external
https://webkitgtk.org/security/WSA-2024-0004.html	external
https://access.redhat.com/security/cve/CVE-2024-40779	self
https://bugzilla.redhat.com/show_bug.cgi?id=2302070	external
https://www.cve.org/CVERecord?id=CVE-2024-40779	external
https://nvd.nist.gov/vuln/detail/CVE-2024-40779	external
https://webkitgtk.org/security/WSA-2024-0004.html…	external
https://access.redhat.com/security/cve/CVE-2024-40780	self
https://bugzilla.redhat.com/show_bug.cgi?id=2302069	external
https://www.cve.org/CVERecord?id=CVE-2024-40780	external
https://nvd.nist.gov/vuln/detail/CVE-2024-40780	external
https://webkitgtk.org/security/WSA-2024-0004.html…	external
https://access.redhat.com/security/cve/CVE-2024-40782	self
https://bugzilla.redhat.com/show_bug.cgi?id=2302071	external
https://www.cve.org/CVERecord?id=CVE-2024-40782	external
https://nvd.nist.gov/vuln/detail/CVE-2024-40782	external
https://webkitgtk.org/security/WSA-2024-0004.html…	external
https://access.redhat.com/security/cve/CVE-2024-40789	self
https://bugzilla.redhat.com/show_bug.cgi?id=2302067	external
https://www.cve.org/CVERecord?id=CVE-2024-40789	external
https://nvd.nist.gov/vuln/detail/CVE-2024-40789	external
https://webkitgtk.org/security/WSA-2024-0004.html…	external
https://access.redhat.com/security/cve/CVE-2024-44185	self
https://bugzilla.redhat.com/show_bug.cgi?id=2323263	external
https://www.cve.org/CVERecord?id=CVE-2024-44185	external
https://nvd.nist.gov/vuln/detail/CVE-2024-44185	external
https://webkitgtk.org/security/WSA-2024-0006.html	external
https://access.redhat.com/security/cve/CVE-2024-44244	self
https://bugzilla.redhat.com/show_bug.cgi?id=2323278	external
https://www.cve.org/CVERecord?id=CVE-2024-44244	external
https://nvd.nist.gov/vuln/detail/CVE-2024-44244	external
https://access.redhat.com/security/cve/CVE-2024-54534	self
https://bugzilla.redhat.com/show_bug.cgi?id=2333846	external
https://www.cve.org/CVERecord?id=CVE-2024-54534	external
https://nvd.nist.gov/vuln/detail/CVE-2024-54534	external
https://support.apple.com/en-us/121837	external
https://support.apple.com/en-us/121839	external
https://support.apple.com/en-us/121843	external
https://support.apple.com/en-us/121844	external
https://support.apple.com/en-us/121845	external
https://support.apple.com/en-us/121846	external
https://access.redhat.com/security/cve/CVE-2025-24223	self
https://bugzilla.redhat.com/show_bug.cgi?id=2366499	external
https://www.cve.org/CVERecord?id=CVE-2025-24223	external
https://nvd.nist.gov/vuln/detail/CVE-2025-24223	external
https://access.redhat.com/security/cve/CVE-2025-24264	self
https://bugzilla.redhat.com/show_bug.cgi?id=2357918	external
https://www.cve.org/CVERecord?id=CVE-2025-24264	external
https://nvd.nist.gov/vuln/detail/CVE-2025-24264	external
https://webkitgtk.org/security/WSA-2025-0003.html	external
https://access.redhat.com/security/cve/CVE-2025-31204	self
https://bugzilla.redhat.com/show_bug.cgi?id=2366500	external
https://www.cve.org/CVERecord?id=CVE-2025-31204	external
https://nvd.nist.gov/vuln/detail/CVE-2025-31204	external
https://access.redhat.com/security/cve/CVE-2025-31206	self
https://bugzilla.redhat.com/show_bug.cgi?id=2366502	external
https://www.cve.org/CVERecord?id=CVE-2025-31206	external
https://nvd.nist.gov/vuln/detail/CVE-2025-31206	external
https://access.redhat.com/security/cve/CVE-2025-31215	self
https://bugzilla.redhat.com/show_bug.cgi?id=2366503	external
https://www.cve.org/CVERecord?id=CVE-2025-31215	external
https://nvd.nist.gov/vuln/detail/CVE-2025-31215	external
https://access.redhat.com/security/cve/CVE-2025-43480	self
https://bugzilla.redhat.com/show_bug.cgi?id=2416338	external
https://www.cve.org/CVERecord?id=CVE-2025-43480	external
https://nvd.nist.gov/vuln/detail/CVE-2025-43480	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform.\n\nSecurity Fix(es):\n\n* webkitgtk: Memory corruption issue when processing web content (CVE-2022-32885)\n\n* webkitgtk: arbitrary javascript code execution (CVE-2023-40397)\n\n* webkitgtk: Arbitrary Remote Code Execution (CVE-2023-42917)\n\n* webkitgtk: type confusion may lead to arbitrary code execution (CVE-2024-23222)\n\n* webkitgtk: Processing web content may lead to arbitrary code execution (CVE-2023-42852)\n\n* chromium-browser: Use after free in ANGLE (CVE-2024-4558)\n\n* webkitgtk: webkit2gtk: Use after free may lead to Remote Code Execution (CVE-2024-40776)\n\n* webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2024-40789)\n\n* webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking (CVE-2024-40780)\n\n* webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking (CVE-2024-40779)\n\n* webkitgtk: webkit2gtk: Use-after-free was addressed with improved memory management (CVE-2024-40782)\n\n* webkitgtk: Processing web content may lead to arbitrary code execution (CVE-2024-27808)\n\n* webkitgtk: Processing web content may lead to arbitrary code execution (CVE-2024-27820)\n\n* webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution (CVE-2024-27833)\n\n* webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution (CVE-2024-27851)\n\n* webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2024-44185)\n\n* webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2024-44244)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2024:9653",
        "url": "https://access.redhat.com/errata/RHSA-2024:9653"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/vulnerabilities/",
        "url": "https://access.redhat.com/security/vulnerabilities/"
      },
      {
        "category": "external",
        "summary": "2236842",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2236842"
      },
      {
        "category": "external",
        "summary": "2238945",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2238945"
      },
      {
        "category": "external",
        "summary": "2253058",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2253058"
      },
      {
        "category": "external",
        "summary": "2259893",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2259893"
      },
      {
        "category": "external",
        "summary": "2271456",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271456"
      },
      {
        "category": "external",
        "summary": "2279689",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279689"
      },
      {
        "category": "external",
        "summary": "2301841",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2301841"
      },
      {
        "category": "external",
        "summary": "2302067",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302067"
      },
      {
        "category": "external",
        "summary": "2302069",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302069"
      },
      {
        "category": "external",
        "summary": "2302070",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302070"
      },
      {
        "category": "external",
        "summary": "2302071",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302071"
      },
      {
        "category": "external",
        "summary": "2314697",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314697"
      },
      {
        "category": "external",
        "summary": "2314698",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314698"
      },
      {
        "category": "external",
        "summary": "2314700",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314700"
      },
      {
        "category": "external",
        "summary": "2314704",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314704"
      },
      {
        "category": "external",
        "summary": "2323263",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2323263"
      },
      {
        "category": "external",
        "summary": "2323278",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2323278"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_9653.json"
      }
    ],
    "title": "Red Hat Security Advisory: webkit2gtk3 security update",
    "tracking": {
      "current_release_date": "2026-04-13T08:44:41+00:00",
      "generator": {
        "date": "2026-04-13T08:44:41+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.7.5"
        }
      },
      "id": "RHSA-2024:9653",
      "initial_release_date": "2024-11-14T12:21:26+00:00",
      "revision_history": [
        {
          "date": "2024-11-14T12:21:26+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2024-11-14T12:21:26+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-04-13T08:44:41+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream AUS (v.8.6)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream AUS (v.8.6)",
                  "product_id": "AppStream-8.6.0.Z.AUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_aus:8.6::appstream"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream E4S (v.8.6)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream E4S (v.8.6)",
                  "product_id": "AppStream-8.6.0.Z.E4S",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_e4s:8.6::appstream"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream TUS (v.8.6)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream TUS (v.8.6)",
                  "product_id": "AppStream-8.6.0.Z.TUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_tus:8.6::appstream"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.46.3-1.el8_6.src",
                "product": {
                  "name": "webkit2gtk3-0:2.46.3-1.el8_6.src",
                  "product_id": "webkit2gtk3-0:2.46.3-1.el8_6.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.46.3-1.el8_6?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.46.3-1.el8_6.i686",
                "product": {
                  "name": "webkit2gtk3-0:2.46.3-1.el8_6.i686",
                  "product_id": "webkit2gtk3-0:2.46.3-1.el8_6.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.46.3-1.el8_6?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
                  "product_id": "webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.46.3-1.el8_6?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
                  "product_id": "webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.46.3-1.el8_6?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.46.3-1.el8_6?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
                  "product_id": "webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.46.3-1.el8_6?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
                  "product_id": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.46.3-1.el8_6?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.46.3-1.el8_6?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.46.3-1.el8_6?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.46.3-1.el8_6?arch=i686"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i686"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
                "product": {
                  "name": "webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
                  "product_id": "webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.46.3-1.el8_6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
                  "product_id": "webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.46.3-1.el8_6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
                  "product_id": "webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.46.3-1.el8_6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.46.3-1.el8_6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
                  "product_id": "webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.46.3-1.el8_6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
                  "product_id": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.46.3-1.el8_6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.46.3-1.el8_6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.46.3-1.el8_6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.46.3-1.el8_6?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
                "product": {
                  "name": "webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
                  "product_id": "webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.46.3-1.el8_6?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
                  "product_id": "webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.46.3-1.el8_6?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
                  "product_id": "webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.46.3-1.el8_6?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.46.3-1.el8_6?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
                  "product_id": "webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.46.3-1.el8_6?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
                  "product_id": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.46.3-1.el8_6?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.46.3-1.el8_6?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.46.3-1.el8_6?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.46.3-1.el8_6?arch=aarch64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
                "product": {
                  "name": "webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
                  "product_id": "webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.46.3-1.el8_6?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
                  "product_id": "webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.46.3-1.el8_6?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
                  "product_id": "webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.46.3-1.el8_6?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.46.3-1.el8_6?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
                  "product_id": "webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.46.3-1.el8_6?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
                  "product_id": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.46.3-1.el8_6?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.46.3-1.el8_6?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.46.3-1.el8_6?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.46.3-1.el8_6?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.46.3-1.el8_6.s390x",
                "product": {
                  "name": "webkit2gtk3-0:2.46.3-1.el8_6.s390x",
                  "product_id": "webkit2gtk3-0:2.46.3-1.el8_6.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.46.3-1.el8_6?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
                  "product_id": "webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.46.3-1.el8_6?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
                  "product_id": "webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.46.3-1.el8_6?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.46.3-1.el8_6?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
                  "product_id": "webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.46.3-1.el8_6?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
                  "product_id": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.46.3-1.el8_6?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.46.3-1.el8_6?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.46.3-1.el8_6?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.46.3-1.el8_6?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.46.3-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-0:2.46.3-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.46.3-1.el8_6.src as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src"
        },
        "product_reference": "webkit2gtk3-0:2.46.3-1.el8_6.src",
        "relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.46.3-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.46.3-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.46.3-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64"
        },
        "product_reference": "webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.46.3-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-0:2.46.3-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.46.3-1.el8_6.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le"
        },
        "product_reference": "webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.46.3-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x"
        },
        "product_reference": "webkit2gtk3-0:2.46.3-1.el8_6.s390x",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.46.3-1.el8_6.src as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src"
        },
        "product_reference": "webkit2gtk3-0:2.46.3-1.el8_6.src",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.46.3-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64"
        },
        "product_reference": "webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.46.3-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le"
        },
        "product_reference": "webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x"
        },
        "product_reference": "webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.46.3-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-0:2.46.3-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.46.3-1.el8_6.src as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src"
        },
        "product_reference": "webkit2gtk3-0:2.46.3-1.el8_6.src",
        "relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.46.3-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.46.3-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-32885",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "discovery_date": "2023-09-01T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2236842"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKitGTK. This security issue occurs when processing maliciously crafted web content that may lead to arbitrary code execution. This memory corruption issue was addressed with improved validation.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Memory corruption issue when processing web content",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This flaw is being rated as \u0027Moderate\u0027 as WebKitGTK package is shipped as a dependency for Gnome package, additionally Red Hat Enterprise Linux doesn\u0027t ship any WebKitGTK based web browser where this flaw would present a higher severity major threat.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-32885"
        },
        {
          "category": "external",
          "summary": "RHBZ#2236842",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2236842"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-32885",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-32885"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-32885",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32885"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2023-0003.html",
          "url": "https://webkitgtk.org/security/WSA-2023-0003.html"
        }
      ],
      "release_date": "2023-04-21T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:21:26+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9653"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: Memory corruption issue when processing web content"
    },
    {
      "cve": "CVE-2022-48503",
      "cwe": {
        "id": "CWE-94",
        "name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
      },
      "discovery_date": "2023-06-29T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2218623"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in webkitgtk. This issue occurs when processing web content, which may lead to arbitrary code execution.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: improper bounds checking leading to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality..\n\nWebKitGTK4 is used in Red Hat Enterprise Linux 7 by the following packages: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-48503"
        },
        {
          "category": "external",
          "summary": "RHBZ#2218623",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2218623"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-48503",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-48503"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-48503",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-48503"
        },
        {
          "category": "external",
          "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
          "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        }
      ],
      "release_date": "2023-06-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:21:26+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9653"
        },
        {
          "category": "workaround",
          "details": "To mitigate this vulnerability, consider removing certain GNOME packages. Note that uninstalling these packages will break functionality in GNOME, however the server can still be used via the terminal interface.",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "exploit_status",
          "date": "2025-10-20T00:00:00+00:00",
          "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        },
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: improper bounds checking leading to arbitrary code execution"
    },
    {
      "cve": "CVE-2023-40397",
      "cwe": {
        "id": "CWE-96",
        "name": "Improper Neutralization of Directives in Statically Saved Code (\u0027Static Code Injection\u0027)"
      },
      "discovery_date": "2023-09-14T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2238945"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKit. This flaw allows a remote attacker to cause arbitrary javascript code execution.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: arbitrary javascript code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This flaw is being rated as \u0027Moderate\u0027 as WebKitGTK package is shipped as a dependency for Gnome package. Additionally, Red Hat Enterprise Linux doesn\u0027t ship any WebKitGTK based web browser where this flaw would present a higher severity major threat.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-40397"
        },
        {
          "category": "external",
          "summary": "RHBZ#2238945",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2238945"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-40397",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-40397"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-40397",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-40397"
        },
        {
          "category": "external",
          "summary": "https://wpewebkit.org/security/WSA-2023-0008.html",
          "url": "https://wpewebkit.org/security/WSA-2023-0008.html"
        }
      ],
      "release_date": "2023-09-06T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:21:26+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9653"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: arbitrary javascript code execution"
    },
    {
      "cve": "CVE-2023-42852",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2024-03-25T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2271456"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKitGTK and WPE WebKit, which allows remote attacker to perform arbitrary code execution when processing web content. This vulnerability caused by insufficient checks, which could be exploited by attackers to execute malicious code on affected systems.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated important because it affects the confidentiality, integrity, and availability (CIA) of systems, with a high severity rating.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-42852"
        },
        {
          "category": "external",
          "summary": "RHBZ#2271456",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271456"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-42852",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-42852"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-42852",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42852"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2023-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2023-0010.html"
        }
      ],
      "release_date": "2023-11-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:21:26+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9653"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2023-42875",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2025-05-15T12:59:19.828000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2366497"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory handling and result in arbitrary code execution.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-42875"
        },
        {
          "category": "external",
          "summary": "RHBZ#2366497",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2366497"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-42875",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-42875"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-42875",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42875"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0004.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0004.html"
        }
      ],
      "release_date": "2025-05-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:21:26+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9653"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2023-42917",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "discovery_date": "2023-12-05T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2253058"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content may lead to remote code execution. This vulnerability is known to be actively exploited in the wild and was included in the CISA\u0027s KEV catalog.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Arbitrary Remote Code Execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "All versions of Red Hat Enterprise Linux are affected to this vulnerability. To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content. For this reason, this flaw was rated with an important, and not critical, severity.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-42917"
        },
        {
          "category": "external",
          "summary": "RHBZ#2253058",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2253058"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-42917",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-42917"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-42917",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42917"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2023-0011.html",
          "url": "https://webkitgtk.org/security/WSA-2023-0011.html"
        },
        {
          "category": "external",
          "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
          "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        }
      ],
      "release_date": "2023-12-05T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:21:26+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9653"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "exploit_status",
          "date": "2023-12-04T00:00:00+00:00",
          "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        },
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Arbitrary Remote Code Execution"
    },
    {
      "cve": "CVE-2023-42970",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2025-05-15T13:01:32.590000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2366498"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in arbitrary code execution.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-42970"
        },
        {
          "category": "external",
          "summary": "RHBZ#2366498",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2366498"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-42970",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-42970"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-42970",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42970"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0004.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0004.html"
        }
      ],
      "release_date": "2025-05-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:21:26+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9653"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2023-43000",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2025-11-21T12:36:58.206000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2416324"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in memory corruption.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to memory corruption",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause memory corruption and the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-43000"
        },
        {
          "category": "external",
          "summary": "RHBZ#2416324",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2416324"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-43000",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-43000"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-43000",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-43000"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0008.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0008.html"
        },
        {
          "category": "external",
          "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
          "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        }
      ],
      "release_date": "2025-11-20T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:21:26+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9653"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "exploit_status",
          "date": "2026-03-05T00:00:00+00:00",
          "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        },
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to memory corruption"
    },
    {
      "cve": "CVE-2023-43010",
      "cwe": {
        "id": "CWE-120",
        "name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
      },
      "discovery_date": "2026-03-18T19:58:01.296000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2448778"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause memory corruption due to improper memory handling.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to memory corruption",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause memory corruption and the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-43010"
        },
        {
          "category": "external",
          "summary": "RHBZ#2448778",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2448778"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-43010",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-43010"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-43010",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-43010"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2026-0001.html",
          "url": "https://webkitgtk.org/security/WSA-2026-0001.html"
        }
      ],
      "release_date": "2026-03-18T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:21:26+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9653"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to memory corruption"
    },
    {
      "cve": "CVE-2024-4558",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2024-05-08T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2279689"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "There\u0027s a flaw in the Angle package where processing maliciously crafted web content may lead to a use-after-free. A remote attacker may leverage that to exploit heap corruption related bugs, such as crashing the application or remote code execution.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "chromium-browser: Use after free in ANGLE",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-4558"
        },
        {
          "category": "external",
          "summary": "RHBZ#2279689",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279689"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-4558",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-4558"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-4558",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-4558"
        }
      ],
      "release_date": "2024-05-07T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:21:26+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9653"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.0,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "chromium-browser: Use after free in ANGLE"
    },
    {
      "cve": "CVE-2024-23222",
      "cwe": {
        "id": "CWE-843",
        "name": "Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)"
      },
      "discovery_date": "2024-01-23T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2259893"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content may lead to remote code execution due to a type confusion issue. This vulnerability is known to be actively exploited in the wild and was included in the CISA\u0027s KEV catalog.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: type confusion may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This flaw depends on the WebKitGTK JIT engine to be enabled. This feature has been disabled in Red Hat Enterprise Linux 8.8 and 9.2 by the errata RHSA-2023:4202 and RHSA-2023:4201. Therefore, Red Hat Enterprise Linux 8.8 and 9.2, when these errata are applied, and newer versions are not affected by this vulnerability.\n\nRHSA-2023:4202: https://access.redhat.com/errata/RHSA-2023:4202\nRHSA-2023:4201: https://access.redhat.com/errata/RHSA-2023:4201\n\nTo exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content. For this reason, this flaw was rated with an important, and not critical, severity.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-23222"
        },
        {
          "category": "external",
          "summary": "RHBZ#2259893",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2259893"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-23222",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-23222"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-23222",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-23222"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0001.html",
          "url": "https://webkitgtk.org/security/WSA-2024-0001.html"
        },
        {
          "category": "external",
          "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
          "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        }
      ],
      "release_date": "2024-01-23T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:21:26+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9653"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "exploit_status",
          "date": "2024-01-23T00:00:00+00:00",
          "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        },
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: type confusion may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2024-27808",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2024-09-25T15:36:18.356000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2314697"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKit. This flaw allows a remote attacker to perform arbitrary code execution when processing web content. This flaw is caused by insufficient memory handling, which attackers could exploit to execute malicious code on affected systems.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This WebKit vulnerability marked as important because it enables remote attackers to execute malicious code on users\u0027 systems just by visiting compromised websites, posing significant risks like data theft and system compromise.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-27808"
        },
        {
          "category": "external",
          "summary": "RHBZ#2314697",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314697"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-27808",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-27808"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-27808",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27808"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0005.html",
          "url": "https://webkitgtk.org/security/WSA-2024-0005.html"
        }
      ],
      "release_date": "2024-09-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:21:26+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9653"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2024-27820",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2024-09-25T15:37:48.081000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2314698"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKit. This flaw allows a remote attacker to perform arbitrary code execution when processing web content. This flaw is caused by insufficient memory handling, which attackers could exploit to execute malicious code on affected systems.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This WebKit vulnerability marked as important because it enables remote attackers to execute malicious code on users\u0027 systems just by visiting compromised websites, posing significant risks like data theft and system compromise.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-27820"
        },
        {
          "category": "external",
          "summary": "RHBZ#2314698",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314698"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-27820",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-27820"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-27820",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27820"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0005.html",
          "url": "https://webkitgtk.org/security/WSA-2024-0005.html"
        }
      ],
      "release_date": "2024-09-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:21:26+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9653"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2024-27833",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2024-09-25T15:40:34.042000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2314700"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKit. This flaw allows a remote attacker to perform arbitrary code execution when processing web content. This flaw is caused by insufficient input validation, which attackers could exploit to execute malicious code on affected systems.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This WebKit vulnerability marked as important because it enables remote attackers to execute malicious code on users\u0027 systems just by visiting compromised websites, posing significant risks like data theft and system compromise.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-27833"
        },
        {
          "category": "external",
          "summary": "RHBZ#2314700",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314700"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-27833",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-27833"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-27833",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27833"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0005.html",
          "url": "https://webkitgtk.org/security/WSA-2024-0005.html"
        }
      ],
      "release_date": "2024-09-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:21:26+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9653"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2024-27851",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2024-09-25T15:44:41.235000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2314704"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKit. This flaw allows a remote attacker to perform arbitrary code execution when processing web content. This flaw is caused by insufficient bounds checks, which could be exploited by attackers to execute malicious code on affected systems.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This WebKit vulnerability marked as important because it enables remote attackers to execute malicious code on users\u0027 systems just by visiting compromised websites, posing significant risks like data theft and system compromise.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-27851"
        },
        {
          "category": "external",
          "summary": "RHBZ#2314704",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314704"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-27851",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-27851"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-27851",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27851"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0005.html",
          "url": "https://webkitgtk.org/security/WSA-2024-0005.html"
        }
      ],
      "release_date": "2024-09-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:21:26+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9653"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2024-27856",
      "cwe": {
        "id": "CWE-94",
        "name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
      },
      "discovery_date": "2025-02-10T09:34:34.705418+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2344618"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause unexpected app termination or arbitrary code execution due to improper checks.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing a file may lead to unexpected app termination or arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-27856"
        },
        {
          "category": "external",
          "summary": "RHBZ#2344618",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2344618"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-27856",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-27856"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-27856",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27856"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/120896",
          "url": "https://support.apple.com/en-us/120896"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/120898",
          "url": "https://support.apple.com/en-us/120898"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/120901",
          "url": "https://support.apple.com/en-us/120901"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/120902",
          "url": "https://support.apple.com/en-us/120902"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/120903",
          "url": "https://support.apple.com/en-us/120903"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/120905",
          "url": "https://support.apple.com/en-us/120905"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/120906",
          "url": "https://support.apple.com/en-us/120906"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0001.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0001.html"
        }
      ],
      "release_date": "2025-01-15T19:35:57.075000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:21:26+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9653"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing a file may lead to unexpected app termination or arbitrary code execution"
    },
    {
      "cve": "CVE-2024-40776",
      "discovery_date": "2024-07-30T20:48:03+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2301841"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKitGTK. A use-after-free may lead to Remote Code Execution. Users are advised to avoid processing untrusted web content in WebKitGTK.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: webkit2gtk: Use after free may lead to Remote Code Execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-40776"
        },
        {
          "category": "external",
          "summary": "RHBZ#2301841",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2301841"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-40776",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-40776"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-40776",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-40776"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0004.html",
          "url": "https://webkitgtk.org/security/WSA-2024-0004.html"
        }
      ],
      "release_date": "2024-07-30T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:21:26+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9653"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: webkit2gtk: Use after free may lead to Remote Code Execution"
    },
    {
      "cve": "CVE-2024-40779",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "discovery_date": "2024-07-31T15:05:50+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2302070"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can trigger an out-of-bounds read due to improper bounds checking, causing an unexpected process crash, resulting in a denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-40779"
        },
        {
          "category": "external",
          "summary": "RHBZ#2302070",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302070"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-40779",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-40779"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-40779",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-40779"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40779",
          "url": "https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40779"
        }
      ],
      "release_date": "2024-07-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:21:26+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9653"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking"
    },
    {
      "cve": "CVE-2024-40780",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "discovery_date": "2024-07-31T15:07:22+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2302069"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can trigger an out-of-bounds read due to improper bounds checking, causing an unexpected process crash, resulting in a denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-40780"
        },
        {
          "category": "external",
          "summary": "RHBZ#2302069",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302069"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-40780",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-40780"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-40780",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-40780"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40780",
          "url": "https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40780"
        }
      ],
      "release_date": "2024-07-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:21:26+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9653"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking"
    },
    {
      "cve": "CVE-2024-40782",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2024-07-31T14:57:24+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2302071"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can trigger a use-after-free issue due to improper bounds checking, causing an unexpected process crash, resulting in a denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: webkit2gtk: Use-after-free was addressed with improved memory management",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-40782"
        },
        {
          "category": "external",
          "summary": "RHBZ#2302071",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302071"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-40782",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-40782"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-40782",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-40782"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40782",
          "url": "https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40782"
        }
      ],
      "release_date": "2024-07-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:21:26+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9653"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: webkit2gtk: Use-after-free was addressed with improved memory management"
    },
    {
      "cve": "CVE-2024-40789",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "discovery_date": "2024-07-31T15:39:05+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2302067"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can trigger an out-of-bounds read due to improper bounds checking, causing an unexpected process crash, resulting in a denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-40789"
        },
        {
          "category": "external",
          "summary": "RHBZ#2302067",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302067"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-40789",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-40789"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-40789",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-40789"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40789",
          "url": "https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40789"
        }
      ],
      "release_date": "2024-07-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:21:26+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9653"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2024-44185",
      "cwe": {
        "id": "CWE-788",
        "name": "Access of Memory Location After End of Buffer"
      },
      "discovery_date": "2024-11-01T20:05:39.339000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2323263"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKitGTK, where processing maliciously crafted web content may lead to the program crashing. Code execution is not discarded as a consequence.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated as important severity because it allows maliciously crafted web content to crash the application, potentially leads to denial of service. While it does not compromise confidentiality or integrity, the ability to crash the program without requiring authentication poses a significant risk.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-44185"
        },
        {
          "category": "external",
          "summary": "RHBZ#2323263",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2323263"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-44185",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-44185"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-44185",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-44185"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0006.html",
          "url": "https://webkitgtk.org/security/WSA-2024-0006.html"
        }
      ],
      "release_date": "2024-10-31T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:21:26+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9653"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2024-44244",
      "cwe": {
        "id": "CWE-788",
        "name": "Access of Memory Location After End of Buffer"
      },
      "discovery_date": "2024-11-01T21:06:58.389000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2323278"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKitGTK, where processing maliciously crafted web content may lead to program to a crash. This issue occurs because code execution is not discarded as consequence.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-44244"
        },
        {
          "category": "external",
          "summary": "RHBZ#2323278",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2323278"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-44244",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-44244"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-44244",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-44244"
        }
      ],
      "release_date": "2024-01-31T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:21:26+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9653"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2024-54534",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "discovery_date": "2024-12-23T13:18:32.596325+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2333846"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause memory corruption due to improper memory handling.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkit: Processing maliciously crafted web content may lead to memory corruption",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-54534"
        },
        {
          "category": "external",
          "summary": "RHBZ#2333846",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2333846"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-54534",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-54534"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-54534",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-54534"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/121837",
          "url": "https://support.apple.com/en-us/121837"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/121839",
          "url": "https://support.apple.com/en-us/121839"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/121843",
          "url": "https://support.apple.com/en-us/121843"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/121844",
          "url": "https://support.apple.com/en-us/121844"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/121845",
          "url": "https://support.apple.com/en-us/121845"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/121846",
          "url": "https://support.apple.com/en-us/121846"
        }
      ],
      "release_date": "2024-12-11T22:58:39.974000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:21:26+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9653"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkit: Processing maliciously crafted web content may lead to memory corruption"
    },
    {
      "cve": "CVE-2025-24223",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2025-05-15T13:03:40.562000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2366499"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory handling and result in memory corruption.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to memory corruption",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-24223"
        },
        {
          "category": "external",
          "summary": "RHBZ#2366499",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2366499"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-24223",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-24223"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-24223",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-24223"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0004.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0004.html"
        }
      ],
      "release_date": "2025-05-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:21:26+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9653"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to memory corruption"
    },
    {
      "cve": "CVE-2025-24264",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2025-04-07T14:31:23.097000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2357918"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause an unexpected process crash due to improper memory handling.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-24264"
        },
        {
          "category": "external",
          "summary": "RHBZ#2357918",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2357918"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-24264",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-24264"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-24264",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-24264"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0003.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0003.html"
        }
      ],
      "release_date": "2025-04-07T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:21:26+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9653"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash"
    },
    {
      "cve": "CVE-2025-31204",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "discovery_date": "2025-05-15T13:04:43.281000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2366500"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause out-of-bounds memory access due to improper memory handling and result in memory corruption.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to memory corruption",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-31204"
        },
        {
          "category": "external",
          "summary": "RHBZ#2366500",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2366500"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-31204",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-31204"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-31204",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-31204"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0004.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0004.html"
        }
      ],
      "release_date": "2025-05-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:21:26+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9653"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to memory corruption"
    },
    {
      "cve": "CVE-2025-31206",
      "cwe": {
        "id": "CWE-843",
        "name": "Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)"
      },
      "discovery_date": "2025-05-15T13:06:54.355000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2366502"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a type confusion issue due to improper state handling and result in an unexpected crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-31206"
        },
        {
          "category": "external",
          "summary": "RHBZ#2366502",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2366502"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-31206",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-31206"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-31206",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-31206"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0004.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0004.html"
        }
      ],
      "release_date": "2025-05-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:21:26+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9653"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash"
    },
    {
      "cve": "CVE-2025-31215",
      "cwe": {
        "id": "CWE-476",
        "name": "NULL Pointer Dereference"
      },
      "discovery_date": "2025-05-15T13:07:56.027000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2366503"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a NULL pointer dereference due to improper checks, resulting in an unexpected process crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-31215"
        },
        {
          "category": "external",
          "summary": "RHBZ#2366503",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2366503"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-31215",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-31215"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-31215",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-31215"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0004.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0004.html"
        }
      ],
      "release_date": "2025-05-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:21:26+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9653"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43480",
      "cwe": {
        "id": "CWE-200",
        "name": "Exposure of Sensitive Information to an Unauthorized Actor"
      },
      "discovery_date": "2025-11-21T12:52:14.645000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2416338"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. A malicious website may exfiltrate data cross-origin due to improper checks.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: A malicious website may exfiltrate data cross-origin",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into visiting a malicious website, potentially exposing sensitive information. Due to this reason, this flaw has been rated with a moderate severity.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43480"
        },
        {
          "category": "external",
          "summary": "RHBZ#2416338",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2416338"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43480",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43480"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43480",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43480"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0008.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0008.html"
        }
      ],
      "release_date": "2025-11-20T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T12:21:26+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9653"
        },
        {
          "category": "workaround",
          "details": "Do not visit untrusted websites. Also, do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi, and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and used via a graphical interface to process untrusted web content, via GNOME, for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: A malicious website may exfiltrate data cross-origin"
    }
  ]
}

RHSA-2024:9679

Vulnerability from csaf_redhat - Published: 2024-11-14 15:34 - Updated: 2026-04-13 08:44

Summary

Red Hat Security Advisory: webkit2gtk3 security update

Severity

Important

Notes

Topic: An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details: WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fix(es): * webkitgtk: Memory corruption issue when processing web content (CVE-2022-32885) * webkitgtk: arbitrary javascript code execution (CVE-2023-40397) * webkitgtk: Arbitrary Remote Code Execution (CVE-2023-42917) * webkitgtk: type confusion may lead to arbitrary code execution (CVE-2024-23222) * webkitgtk: Processing web content may lead to arbitrary code execution (CVE-2023-42852) * chromium-browser: Use after free in ANGLE (CVE-2024-4558) * webkitgtk: webkit2gtk: Use after free may lead to Remote Code Execution (CVE-2024-40776) * webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2024-40789) * webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking (CVE-2024-40780) * webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking (CVE-2024-40779) * webkitgtk: webkit2gtk: Use-after-free was addressed with improved memory management (CVE-2024-40782) * webkitgtk: Processing web content may lead to arbitrary code execution (CVE-2024-27808) * webkitgtk: Processing web content may lead to arbitrary code execution (CVE-2024-27820) * webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution (CVE-2024-27833) * webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution (CVE-2024-27851) * webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2024-44185) * webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2024-44244) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2022-32885

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-20 - Improper Input Validation

Affected products

Fixed 66 products

Product	Version	Remediation
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2022-48503

A vulnerability was found in webkitgtk. This issue occurs when processing web content, which may lead to arbitrary code execution.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-94 - Improper Control of Generation of Code ('Code Injection')

Affected products

Fixed 66 products

Product	Version	Remediation
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround

Threats

Exploit Status CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog

Impact Important

CVE-2023-40397

A vulnerability was found in WebKit. This flaw allows a remote attacker to cause arbitrary javascript code execution.

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-96 - Improper Neutralization of Directives in Statically Saved Code ('Static Code Injection')

Affected products

Fixed 66 products

Product	Version	Remediation
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2023-42852

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Affected products

Fixed 66 products

Product	Version	Remediation
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2023-42875

A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory handling and result in arbitrary code execution.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Affected products

Fixed 66 products

Product	Version	Remediation
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2023-42917

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-787 - Out-of-bounds Write

Affected products

Fixed 66 products

Product	Version	Remediation
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround

Threats

Exploit Status CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog

Impact Important

CVE-2023-42970

A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in arbitrary code execution.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Affected products

Fixed 66 products

Product	Version	Remediation
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2023-43000

A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in memory corruption.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Affected products

Fixed 66 products

Product	Version	Remediation
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround

Threats

Exploit Status CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog

Impact Important

CVE-2023-43010

A flaw was found in WebKitGTK. Processing malicious web content can cause memory corruption due to improper memory handling.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-120 - Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

Affected products

Fixed 66 products

Product	Version	Remediation
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2024-4558

7.0 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Affected products

Fixed 66 products

Product	Version	Remediation
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2024-23222

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-843 - Access of Resource Using Incompatible Type ('Type Confusion')

Affected products

Fixed 66 products

Product	Version	Remediation
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround

Threats

Exploit Status CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog

Impact Important

CVE-2024-27808

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Affected products

Fixed 66 products

Product	Version	Remediation
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2024-27820

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Affected products

Fixed 66 products

Product	Version	Remediation
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2024-27833

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Affected products

Fixed 66 products

Product	Version	Remediation
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2024-27851

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Affected products

Fixed 66 products

Product	Version	Remediation
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2024-27856

A flaw was found in WebKitGTK. Processing malicious web content can cause unexpected app termination or arbitrary code execution due to improper checks.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-94 - Improper Control of Generation of Code ('Code Injection')

Affected products

Fixed 66 products

Product	Version	Remediation
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2024-40776

A vulnerability was found in WebKitGTK. A use-after-free may lead to Remote Code Execution. Users are advised to avoid processing untrusted web content in WebKitGTK.

4.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

Affected products

Fixed 66 products

Product	Version	Remediation
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2024-40779

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE-125 - Out-of-bounds Read

Affected products

Fixed 66 products

Product	Version	Remediation
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2024-40780

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE-125 - Out-of-bounds Read

Affected products

Fixed 66 products

Product	Version	Remediation
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2024-40782

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE-416 - Use After Free

Affected products

Fixed 66 products

Product	Version	Remediation
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2024-40789

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE-125 - Out-of-bounds Read

Affected products

Fixed 66 products

Product	Version	Remediation
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2024-44185

A vulnerability was found in WebKitGTK, where processing maliciously crafted web content may lead to the program crashing. Code execution is not discarded as a consequence.

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE-788 - Access of Memory Location After End of Buffer

Affected products

Fixed 66 products

Product	Version	Remediation
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2024-44244

A vulnerability was found in WebKitGTK, where processing maliciously crafted web content may lead to program to a crash. This issue occurs because code execution is not discarded as consequence.

4.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

CWE-788 - Access of Memory Location After End of Buffer

Affected products

Fixed 66 products

Product	Version	Remediation
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2024-54534

A flaw was found in WebKitGTK. Processing malicious web content can cause memory corruption due to improper memory handling.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-787 - Out-of-bounds Write

Affected products

Fixed 66 products

Product	Version	Remediation
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2025-24223

A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory handling and result in memory corruption.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Affected products

Fixed 66 products

Product	Version	Remediation
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2025-24264

A flaw was found in WebKitGTK. Processing malicious web content can cause an unexpected process crash due to improper memory handling.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Affected products

Fixed 66 products

Product	Version	Remediation
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2025-31204

A flaw was found in WebKitGTK. Processing malicious web content can cause out-of-bounds memory access due to improper memory handling and result in memory corruption.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-787 - Out-of-bounds Write

Affected products

Fixed 66 products

Product	Version	Remediation
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2025-31206

A flaw was found in WebKitGTK. Processing malicious web content can cause a type confusion issue due to improper state handling and result in an unexpected crash.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-843 - Access of Resource Using Incompatible Type ('Type Confusion')

Affected products

Fixed 66 products

Product	Version	Remediation
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2025-31215

A flaw was found in WebKitGTK. Processing malicious web content can cause a NULL pointer dereference due to improper checks, resulting in an unexpected process crash.

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE-476 - NULL Pointer Dereference

Affected products

Fixed 66 products

Product	Version	Remediation
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2025-43480

A flaw was found in WebKitGTK. A malicious website may exfiltrate data cross-origin due to improper checks.

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

Affected products

Fixed 66 products

Product	Version	Remediation
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

References

171 references

URL	Category
https://access.redhat.com/errata/RHSA-2024:9679	self
https://access.redhat.com/security/updates/classi…	external
https://bugzilla.redhat.com/show_bug.cgi?id=2236842	external
https://bugzilla.redhat.com/show_bug.cgi?id=2238945	external
https://bugzilla.redhat.com/show_bug.cgi?id=2253058	external
https://bugzilla.redhat.com/show_bug.cgi?id=2259893	external
https://bugzilla.redhat.com/show_bug.cgi?id=2271456	external
https://bugzilla.redhat.com/show_bug.cgi?id=2279689	external
https://bugzilla.redhat.com/show_bug.cgi?id=2301841	external
https://bugzilla.redhat.com/show_bug.cgi?id=2302067	external
https://bugzilla.redhat.com/show_bug.cgi?id=2302069	external
https://bugzilla.redhat.com/show_bug.cgi?id=2302070	external
https://bugzilla.redhat.com/show_bug.cgi?id=2302071	external
https://bugzilla.redhat.com/show_bug.cgi?id=2314697	external
https://bugzilla.redhat.com/show_bug.cgi?id=2314698	external
https://bugzilla.redhat.com/show_bug.cgi?id=2314700	external
https://bugzilla.redhat.com/show_bug.cgi?id=2314704	external
https://bugzilla.redhat.com/show_bug.cgi?id=2323263	external
https://bugzilla.redhat.com/show_bug.cgi?id=2323278	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2022-32885	self
https://bugzilla.redhat.com/show_bug.cgi?id=2236842	external
https://www.cve.org/CVERecord?id=CVE-2022-32885	external
https://nvd.nist.gov/vuln/detail/CVE-2022-32885	external
https://webkitgtk.org/security/WSA-2023-0003.html	external
https://access.redhat.com/security/cve/CVE-2022-48503	self
https://bugzilla.redhat.com/show_bug.cgi?id=2218623	external
https://www.cve.org/CVERecord?id=CVE-2022-48503	external
https://nvd.nist.gov/vuln/detail/CVE-2022-48503	external
https://www.cisa.gov/known-exploited-vulnerabilit…	external
https://access.redhat.com/security/cve/CVE-2023-40397	self
https://bugzilla.redhat.com/show_bug.cgi?id=2238945	external
https://www.cve.org/CVERecord?id=CVE-2023-40397	external
https://nvd.nist.gov/vuln/detail/CVE-2023-40397	external
https://wpewebkit.org/security/WSA-2023-0008.html	external
https://access.redhat.com/security/cve/CVE-2023-42852	self
https://bugzilla.redhat.com/show_bug.cgi?id=2271456	external
https://www.cve.org/CVERecord?id=CVE-2023-42852	external
https://nvd.nist.gov/vuln/detail/CVE-2023-42852	external
https://webkitgtk.org/security/WSA-2023-0010.html	external
https://access.redhat.com/security/cve/CVE-2023-42875	self
https://bugzilla.redhat.com/show_bug.cgi?id=2366497	external
https://www.cve.org/CVERecord?id=CVE-2023-42875	external
https://nvd.nist.gov/vuln/detail/CVE-2023-42875	external
https://webkitgtk.org/security/WSA-2025-0004.html	external
https://access.redhat.com/security/cve/CVE-2023-42917	self
https://bugzilla.redhat.com/show_bug.cgi?id=2253058	external
https://www.cve.org/CVERecord?id=CVE-2023-42917	external
https://nvd.nist.gov/vuln/detail/CVE-2023-42917	external
https://webkitgtk.org/security/WSA-2023-0011.html	external
https://access.redhat.com/security/cve/CVE-2023-42970	self
https://bugzilla.redhat.com/show_bug.cgi?id=2366498	external
https://www.cve.org/CVERecord?id=CVE-2023-42970	external
https://nvd.nist.gov/vuln/detail/CVE-2023-42970	external
https://access.redhat.com/security/cve/CVE-2023-43000	self
https://bugzilla.redhat.com/show_bug.cgi?id=2416324	external
https://www.cve.org/CVERecord?id=CVE-2023-43000	external
https://nvd.nist.gov/vuln/detail/CVE-2023-43000	external
https://webkitgtk.org/security/WSA-2025-0008.html	external
https://access.redhat.com/security/cve/CVE-2023-43010	self
https://bugzilla.redhat.com/show_bug.cgi?id=2448778	external
https://www.cve.org/CVERecord?id=CVE-2023-43010	external
https://nvd.nist.gov/vuln/detail/CVE-2023-43010	external
https://webkitgtk.org/security/WSA-2026-0001.html	external
https://access.redhat.com/security/cve/CVE-2024-4558	self
https://bugzilla.redhat.com/show_bug.cgi?id=2279689	external
https://www.cve.org/CVERecord?id=CVE-2024-4558	external
https://nvd.nist.gov/vuln/detail/CVE-2024-4558	external
https://access.redhat.com/security/cve/CVE-2024-23222	self
https://bugzilla.redhat.com/show_bug.cgi?id=2259893	external
https://www.cve.org/CVERecord?id=CVE-2024-23222	external
https://nvd.nist.gov/vuln/detail/CVE-2024-23222	external
https://webkitgtk.org/security/WSA-2024-0001.html	external
https://access.redhat.com/security/cve/CVE-2024-27808	self
https://bugzilla.redhat.com/show_bug.cgi?id=2314697	external
https://www.cve.org/CVERecord?id=CVE-2024-27808	external
https://nvd.nist.gov/vuln/detail/CVE-2024-27808	external
https://webkitgtk.org/security/WSA-2024-0005.html	external
https://access.redhat.com/security/cve/CVE-2024-27820	self
https://bugzilla.redhat.com/show_bug.cgi?id=2314698	external
https://www.cve.org/CVERecord?id=CVE-2024-27820	external
https://nvd.nist.gov/vuln/detail/CVE-2024-27820	external
https://access.redhat.com/security/cve/CVE-2024-27833	self
https://bugzilla.redhat.com/show_bug.cgi?id=2314700	external
https://www.cve.org/CVERecord?id=CVE-2024-27833	external
https://nvd.nist.gov/vuln/detail/CVE-2024-27833	external
https://access.redhat.com/security/cve/CVE-2024-27851	self
https://bugzilla.redhat.com/show_bug.cgi?id=2314704	external
https://www.cve.org/CVERecord?id=CVE-2024-27851	external
https://nvd.nist.gov/vuln/detail/CVE-2024-27851	external
https://access.redhat.com/security/cve/CVE-2024-27856	self
https://bugzilla.redhat.com/show_bug.cgi?id=2344618	external
https://www.cve.org/CVERecord?id=CVE-2024-27856	external
https://nvd.nist.gov/vuln/detail/CVE-2024-27856	external
https://support.apple.com/en-us/120896	external
https://support.apple.com/en-us/120898	external
https://support.apple.com/en-us/120901	external
https://support.apple.com/en-us/120902	external
https://support.apple.com/en-us/120903	external
https://support.apple.com/en-us/120905	external
https://support.apple.com/en-us/120906	external
https://webkitgtk.org/security/WSA-2025-0001.html	external
https://access.redhat.com/security/cve/CVE-2024-40776	self
https://bugzilla.redhat.com/show_bug.cgi?id=2301841	external
https://www.cve.org/CVERecord?id=CVE-2024-40776	external
https://nvd.nist.gov/vuln/detail/CVE-2024-40776	external
https://webkitgtk.org/security/WSA-2024-0004.html	external
https://access.redhat.com/security/cve/CVE-2024-40779	self
https://bugzilla.redhat.com/show_bug.cgi?id=2302070	external
https://www.cve.org/CVERecord?id=CVE-2024-40779	external
https://nvd.nist.gov/vuln/detail/CVE-2024-40779	external
https://webkitgtk.org/security/WSA-2024-0004.html…	external
https://access.redhat.com/security/cve/CVE-2024-40780	self
https://bugzilla.redhat.com/show_bug.cgi?id=2302069	external
https://www.cve.org/CVERecord?id=CVE-2024-40780	external
https://nvd.nist.gov/vuln/detail/CVE-2024-40780	external
https://webkitgtk.org/security/WSA-2024-0004.html…	external
https://access.redhat.com/security/cve/CVE-2024-40782	self
https://bugzilla.redhat.com/show_bug.cgi?id=2302071	external
https://www.cve.org/CVERecord?id=CVE-2024-40782	external
https://nvd.nist.gov/vuln/detail/CVE-2024-40782	external
https://webkitgtk.org/security/WSA-2024-0004.html…	external
https://access.redhat.com/security/cve/CVE-2024-40789	self
https://bugzilla.redhat.com/show_bug.cgi?id=2302067	external
https://www.cve.org/CVERecord?id=CVE-2024-40789	external
https://nvd.nist.gov/vuln/detail/CVE-2024-40789	external
https://webkitgtk.org/security/WSA-2024-0004.html…	external
https://access.redhat.com/security/cve/CVE-2024-44185	self
https://bugzilla.redhat.com/show_bug.cgi?id=2323263	external
https://www.cve.org/CVERecord?id=CVE-2024-44185	external
https://nvd.nist.gov/vuln/detail/CVE-2024-44185	external
https://webkitgtk.org/security/WSA-2024-0006.html	external
https://access.redhat.com/security/cve/CVE-2024-44244	self
https://bugzilla.redhat.com/show_bug.cgi?id=2323278	external
https://www.cve.org/CVERecord?id=CVE-2024-44244	external
https://nvd.nist.gov/vuln/detail/CVE-2024-44244	external
https://access.redhat.com/security/cve/CVE-2024-54534	self
https://bugzilla.redhat.com/show_bug.cgi?id=2333846	external
https://www.cve.org/CVERecord?id=CVE-2024-54534	external
https://nvd.nist.gov/vuln/detail/CVE-2024-54534	external
https://support.apple.com/en-us/121837	external
https://support.apple.com/en-us/121839	external
https://support.apple.com/en-us/121843	external
https://support.apple.com/en-us/121844	external
https://support.apple.com/en-us/121845	external
https://support.apple.com/en-us/121846	external
https://access.redhat.com/security/cve/CVE-2025-24223	self
https://bugzilla.redhat.com/show_bug.cgi?id=2366499	external
https://www.cve.org/CVERecord?id=CVE-2025-24223	external
https://nvd.nist.gov/vuln/detail/CVE-2025-24223	external
https://access.redhat.com/security/cve/CVE-2025-24264	self
https://bugzilla.redhat.com/show_bug.cgi?id=2357918	external
https://www.cve.org/CVERecord?id=CVE-2025-24264	external
https://nvd.nist.gov/vuln/detail/CVE-2025-24264	external
https://webkitgtk.org/security/WSA-2025-0003.html	external
https://access.redhat.com/security/cve/CVE-2025-31204	self
https://bugzilla.redhat.com/show_bug.cgi?id=2366500	external
https://www.cve.org/CVERecord?id=CVE-2025-31204	external
https://nvd.nist.gov/vuln/detail/CVE-2025-31204	external
https://access.redhat.com/security/cve/CVE-2025-31206	self
https://bugzilla.redhat.com/show_bug.cgi?id=2366502	external
https://www.cve.org/CVERecord?id=CVE-2025-31206	external
https://nvd.nist.gov/vuln/detail/CVE-2025-31206	external
https://access.redhat.com/security/cve/CVE-2025-31215	self
https://bugzilla.redhat.com/show_bug.cgi?id=2366503	external
https://www.cve.org/CVERecord?id=CVE-2025-31215	external
https://nvd.nist.gov/vuln/detail/CVE-2025-31215	external
https://access.redhat.com/security/cve/CVE-2025-43480	self
https://bugzilla.redhat.com/show_bug.cgi?id=2416338	external
https://www.cve.org/CVERecord?id=CVE-2025-43480	external
https://nvd.nist.gov/vuln/detail/CVE-2025-43480	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform.\n\nSecurity Fix(es):\n\n* webkitgtk: Memory corruption issue when processing web content (CVE-2022-32885)\n\n* webkitgtk: arbitrary javascript code execution (CVE-2023-40397)\n\n* webkitgtk: Arbitrary Remote Code Execution (CVE-2023-42917)\n\n* webkitgtk: type confusion may lead to arbitrary code execution (CVE-2024-23222)\n\n* webkitgtk: Processing web content may lead to arbitrary code execution (CVE-2023-42852)\n\n* chromium-browser: Use after free in ANGLE (CVE-2024-4558)\n\n* webkitgtk: webkit2gtk: Use after free may lead to Remote Code Execution (CVE-2024-40776)\n\n* webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2024-40789)\n\n* webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking (CVE-2024-40780)\n\n* webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking (CVE-2024-40779)\n\n* webkitgtk: webkit2gtk: Use-after-free was addressed with improved memory management (CVE-2024-40782)\n\n* webkitgtk: Processing web content may lead to arbitrary code execution (CVE-2024-27808)\n\n* webkitgtk: Processing web content may lead to arbitrary code execution (CVE-2024-27820)\n\n* webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution (CVE-2024-27833)\n\n* webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution (CVE-2024-27851)\n\n* webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2024-44185)\n\n* webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2024-44244)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2024:9679",
        "url": "https://access.redhat.com/errata/RHSA-2024:9679"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2236842",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2236842"
      },
      {
        "category": "external",
        "summary": "2238945",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2238945"
      },
      {
        "category": "external",
        "summary": "2253058",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2253058"
      },
      {
        "category": "external",
        "summary": "2259893",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2259893"
      },
      {
        "category": "external",
        "summary": "2271456",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271456"
      },
      {
        "category": "external",
        "summary": "2279689",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279689"
      },
      {
        "category": "external",
        "summary": "2301841",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2301841"
      },
      {
        "category": "external",
        "summary": "2302067",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302067"
      },
      {
        "category": "external",
        "summary": "2302069",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302069"
      },
      {
        "category": "external",
        "summary": "2302070",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302070"
      },
      {
        "category": "external",
        "summary": "2302071",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302071"
      },
      {
        "category": "external",
        "summary": "2314697",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314697"
      },
      {
        "category": "external",
        "summary": "2314698",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314698"
      },
      {
        "category": "external",
        "summary": "2314700",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314700"
      },
      {
        "category": "external",
        "summary": "2314704",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314704"
      },
      {
        "category": "external",
        "summary": "2323263",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2323263"
      },
      {
        "category": "external",
        "summary": "2323278",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2323278"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_9679.json"
      }
    ],
    "title": "Red Hat Security Advisory: webkit2gtk3 security update",
    "tracking": {
      "current_release_date": "2026-04-13T08:44:41+00:00",
      "generator": {
        "date": "2026-04-13T08:44:41+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.7.5"
        }
      },
      "id": "RHSA-2024:9679",
      "initial_release_date": "2024-11-14T15:34:16+00:00",
      "revision_history": [
        {
          "date": "2024-11-14T15:34:16+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2024-11-14T15:34:16+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-04-13T08:44:41+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream AUS (v.8.4)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream AUS (v.8.4)",
                  "product_id": "AppStream-8.4.0.Z.AUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_aus:8.4::appstream"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream TUS (v.8.4)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream TUS (v.8.4)",
                  "product_id": "AppStream-8.4.0.Z.TUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_tus:8.4::appstream"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream E4S (v.8.4)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream E4S (v.8.4)",
                  "product_id": "AppStream-8.4.0.Z.E4S",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_e4s:8.4::appstream"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.46.3-1.el8_4.src",
                "product": {
                  "name": "webkit2gtk3-0:2.46.3-1.el8_4.src",
                  "product_id": "webkit2gtk3-0:2.46.3-1.el8_4.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.46.3-1.el8_4?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.46.3-1.el8_4.i686",
                "product": {
                  "name": "webkit2gtk3-0:2.46.3-1.el8_4.i686",
                  "product_id": "webkit2gtk3-0:2.46.3-1.el8_4.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.46.3-1.el8_4?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
                  "product_id": "webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.46.3-1.el8_4?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
                  "product_id": "webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.46.3-1.el8_4?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.46.3-1.el8_4?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
                  "product_id": "webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.46.3-1.el8_4?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
                  "product_id": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.46.3-1.el8_4?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.46.3-1.el8_4?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.46.3-1.el8_4?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.46.3-1.el8_4?arch=i686"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i686"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
                "product": {
                  "name": "webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
                  "product_id": "webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.46.3-1.el8_4?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
                  "product_id": "webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.46.3-1.el8_4?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
                  "product_id": "webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.46.3-1.el8_4?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.46.3-1.el8_4?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
                  "product_id": "webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.46.3-1.el8_4?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
                  "product_id": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.46.3-1.el8_4?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.46.3-1.el8_4?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.46.3-1.el8_4?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.46.3-1.el8_4?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
                "product": {
                  "name": "webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
                  "product_id": "webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.46.3-1.el8_4?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
                  "product_id": "webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.46.3-1.el8_4?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
                  "product_id": "webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.46.3-1.el8_4?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.46.3-1.el8_4?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
                  "product_id": "webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.46.3-1.el8_4?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
                  "product_id": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.46.3-1.el8_4?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.46.3-1.el8_4?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.46.3-1.el8_4?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.46.3-1.el8_4?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.46.3-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-0:2.46.3-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.46.3-1.el8_4.src as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src"
        },
        "product_reference": "webkit2gtk3-0:2.46.3-1.el8_4.src",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.46.3-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.46.3-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.46.3-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-0:2.46.3-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.46.3-1.el8_4.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le"
        },
        "product_reference": "webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
        "relates_to_product_reference": "AppStream-8.4.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.46.3-1.el8_4.src as a component of Red Hat Enterprise Linux AppStream E4S (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src"
        },
        "product_reference": "webkit2gtk3-0:2.46.3-1.el8_4.src",
        "relates_to_product_reference": "AppStream-8.4.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.46.3-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
        "relates_to_product_reference": "AppStream-8.4.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
        "relates_to_product_reference": "AppStream-8.4.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.46.3-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le"
        },
        "product_reference": "webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
        "relates_to_product_reference": "AppStream-8.4.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
        "relates_to_product_reference": "AppStream-8.4.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
        "relates_to_product_reference": "AppStream-8.4.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
        "relates_to_product_reference": "AppStream-8.4.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
        "relates_to_product_reference": "AppStream-8.4.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
        "relates_to_product_reference": "AppStream-8.4.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.46.3-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-0:2.46.3-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.46.3-1.el8_4.src as a component of Red Hat Enterprise Linux AppStream TUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src"
        },
        "product_reference": "webkit2gtk3-0:2.46.3-1.el8_4.src",
        "relates_to_product_reference": "AppStream-8.4.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.46.3-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.46.3-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.TUS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-32885",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "discovery_date": "2023-09-01T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2236842"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKitGTK. This security issue occurs when processing maliciously crafted web content that may lead to arbitrary code execution. This memory corruption issue was addressed with improved validation.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Memory corruption issue when processing web content",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This flaw is being rated as \u0027Moderate\u0027 as WebKitGTK package is shipped as a dependency for Gnome package, additionally Red Hat Enterprise Linux doesn\u0027t ship any WebKitGTK based web browser where this flaw would present a higher severity major threat.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-32885"
        },
        {
          "category": "external",
          "summary": "RHBZ#2236842",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2236842"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-32885",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-32885"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-32885",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32885"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2023-0003.html",
          "url": "https://webkitgtk.org/security/WSA-2023-0003.html"
        }
      ],
      "release_date": "2023-04-21T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T15:34:16+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9679"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: Memory corruption issue when processing web content"
    },
    {
      "cve": "CVE-2022-48503",
      "cwe": {
        "id": "CWE-94",
        "name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
      },
      "discovery_date": "2023-06-29T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2218623"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in webkitgtk. This issue occurs when processing web content, which may lead to arbitrary code execution.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: improper bounds checking leading to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality..\n\nWebKitGTK4 is used in Red Hat Enterprise Linux 7 by the following packages: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-48503"
        },
        {
          "category": "external",
          "summary": "RHBZ#2218623",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2218623"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-48503",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-48503"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-48503",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-48503"
        },
        {
          "category": "external",
          "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
          "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        }
      ],
      "release_date": "2023-06-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T15:34:16+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9679"
        },
        {
          "category": "workaround",
          "details": "To mitigate this vulnerability, consider removing certain GNOME packages. Note that uninstalling these packages will break functionality in GNOME, however the server can still be used via the terminal interface.",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "exploit_status",
          "date": "2025-10-20T00:00:00+00:00",
          "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        },
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: improper bounds checking leading to arbitrary code execution"
    },
    {
      "cve": "CVE-2023-40397",
      "cwe": {
        "id": "CWE-96",
        "name": "Improper Neutralization of Directives in Statically Saved Code (\u0027Static Code Injection\u0027)"
      },
      "discovery_date": "2023-09-14T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2238945"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKit. This flaw allows a remote attacker to cause arbitrary javascript code execution.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: arbitrary javascript code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This flaw is being rated as \u0027Moderate\u0027 as WebKitGTK package is shipped as a dependency for Gnome package. Additionally, Red Hat Enterprise Linux doesn\u0027t ship any WebKitGTK based web browser where this flaw would present a higher severity major threat.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-40397"
        },
        {
          "category": "external",
          "summary": "RHBZ#2238945",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2238945"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-40397",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-40397"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-40397",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-40397"
        },
        {
          "category": "external",
          "summary": "https://wpewebkit.org/security/WSA-2023-0008.html",
          "url": "https://wpewebkit.org/security/WSA-2023-0008.html"
        }
      ],
      "release_date": "2023-09-06T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T15:34:16+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9679"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: arbitrary javascript code execution"
    },
    {
      "cve": "CVE-2023-42852",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2024-03-25T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2271456"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKitGTK and WPE WebKit, which allows remote attacker to perform arbitrary code execution when processing web content. This vulnerability caused by insufficient checks, which could be exploited by attackers to execute malicious code on affected systems.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated important because it affects the confidentiality, integrity, and availability (CIA) of systems, with a high severity rating.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-42852"
        },
        {
          "category": "external",
          "summary": "RHBZ#2271456",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271456"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-42852",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-42852"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-42852",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42852"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2023-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2023-0010.html"
        }
      ],
      "release_date": "2023-11-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T15:34:16+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9679"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2023-42875",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2025-05-15T12:59:19.828000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2366497"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory handling and result in arbitrary code execution.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-42875"
        },
        {
          "category": "external",
          "summary": "RHBZ#2366497",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2366497"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-42875",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-42875"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-42875",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42875"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0004.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0004.html"
        }
      ],
      "release_date": "2025-05-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T15:34:16+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9679"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2023-42917",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "discovery_date": "2023-12-05T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2253058"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content may lead to remote code execution. This vulnerability is known to be actively exploited in the wild and was included in the CISA\u0027s KEV catalog.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Arbitrary Remote Code Execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "All versions of Red Hat Enterprise Linux are affected to this vulnerability. To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content. For this reason, this flaw was rated with an important, and not critical, severity.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-42917"
        },
        {
          "category": "external",
          "summary": "RHBZ#2253058",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2253058"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-42917",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-42917"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-42917",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42917"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2023-0011.html",
          "url": "https://webkitgtk.org/security/WSA-2023-0011.html"
        },
        {
          "category": "external",
          "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
          "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        }
      ],
      "release_date": "2023-12-05T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T15:34:16+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9679"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "exploit_status",
          "date": "2023-12-04T00:00:00+00:00",
          "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        },
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Arbitrary Remote Code Execution"
    },
    {
      "cve": "CVE-2023-42970",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2025-05-15T13:01:32.590000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2366498"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in arbitrary code execution.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-42970"
        },
        {
          "category": "external",
          "summary": "RHBZ#2366498",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2366498"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-42970",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-42970"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-42970",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42970"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0004.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0004.html"
        }
      ],
      "release_date": "2025-05-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T15:34:16+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9679"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2023-43000",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2025-11-21T12:36:58.206000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2416324"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in memory corruption.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to memory corruption",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause memory corruption and the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-43000"
        },
        {
          "category": "external",
          "summary": "RHBZ#2416324",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2416324"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-43000",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-43000"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-43000",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-43000"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0008.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0008.html"
        },
        {
          "category": "external",
          "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
          "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        }
      ],
      "release_date": "2025-11-20T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T15:34:16+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9679"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "exploit_status",
          "date": "2026-03-05T00:00:00+00:00",
          "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        },
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to memory corruption"
    },
    {
      "cve": "CVE-2023-43010",
      "cwe": {
        "id": "CWE-120",
        "name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
      },
      "discovery_date": "2026-03-18T19:58:01.296000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2448778"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause memory corruption due to improper memory handling.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to memory corruption",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause memory corruption and the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-43010"
        },
        {
          "category": "external",
          "summary": "RHBZ#2448778",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2448778"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-43010",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-43010"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-43010",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-43010"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2026-0001.html",
          "url": "https://webkitgtk.org/security/WSA-2026-0001.html"
        }
      ],
      "release_date": "2026-03-18T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T15:34:16+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9679"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to memory corruption"
    },
    {
      "cve": "CVE-2024-4558",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2024-05-08T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2279689"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "There\u0027s a flaw in the Angle package where processing maliciously crafted web content may lead to a use-after-free. A remote attacker may leverage that to exploit heap corruption related bugs, such as crashing the application or remote code execution.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "chromium-browser: Use after free in ANGLE",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-4558"
        },
        {
          "category": "external",
          "summary": "RHBZ#2279689",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279689"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-4558",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-4558"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-4558",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-4558"
        }
      ],
      "release_date": "2024-05-07T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T15:34:16+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9679"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.0,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "chromium-browser: Use after free in ANGLE"
    },
    {
      "cve": "CVE-2024-23222",
      "cwe": {
        "id": "CWE-843",
        "name": "Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)"
      },
      "discovery_date": "2024-01-23T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2259893"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content may lead to remote code execution due to a type confusion issue. This vulnerability is known to be actively exploited in the wild and was included in the CISA\u0027s KEV catalog.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: type confusion may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This flaw depends on the WebKitGTK JIT engine to be enabled. This feature has been disabled in Red Hat Enterprise Linux 8.8 and 9.2 by the errata RHSA-2023:4202 and RHSA-2023:4201. Therefore, Red Hat Enterprise Linux 8.8 and 9.2, when these errata are applied, and newer versions are not affected by this vulnerability.\n\nRHSA-2023:4202: https://access.redhat.com/errata/RHSA-2023:4202\nRHSA-2023:4201: https://access.redhat.com/errata/RHSA-2023:4201\n\nTo exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content. For this reason, this flaw was rated with an important, and not critical, severity.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-23222"
        },
        {
          "category": "external",
          "summary": "RHBZ#2259893",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2259893"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-23222",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-23222"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-23222",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-23222"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0001.html",
          "url": "https://webkitgtk.org/security/WSA-2024-0001.html"
        },
        {
          "category": "external",
          "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
          "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        }
      ],
      "release_date": "2024-01-23T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T15:34:16+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9679"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "exploit_status",
          "date": "2024-01-23T00:00:00+00:00",
          "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        },
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: type confusion may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2024-27808",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2024-09-25T15:36:18.356000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2314697"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKit. This flaw allows a remote attacker to perform arbitrary code execution when processing web content. This flaw is caused by insufficient memory handling, which attackers could exploit to execute malicious code on affected systems.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This WebKit vulnerability marked as important because it enables remote attackers to execute malicious code on users\u0027 systems just by visiting compromised websites, posing significant risks like data theft and system compromise.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-27808"
        },
        {
          "category": "external",
          "summary": "RHBZ#2314697",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314697"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-27808",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-27808"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-27808",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27808"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0005.html",
          "url": "https://webkitgtk.org/security/WSA-2024-0005.html"
        }
      ],
      "release_date": "2024-09-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T15:34:16+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9679"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2024-27820",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2024-09-25T15:37:48.081000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2314698"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKit. This flaw allows a remote attacker to perform arbitrary code execution when processing web content. This flaw is caused by insufficient memory handling, which attackers could exploit to execute malicious code on affected systems.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This WebKit vulnerability marked as important because it enables remote attackers to execute malicious code on users\u0027 systems just by visiting compromised websites, posing significant risks like data theft and system compromise.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-27820"
        },
        {
          "category": "external",
          "summary": "RHBZ#2314698",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314698"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-27820",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-27820"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-27820",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27820"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0005.html",
          "url": "https://webkitgtk.org/security/WSA-2024-0005.html"
        }
      ],
      "release_date": "2024-09-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T15:34:16+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9679"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2024-27833",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2024-09-25T15:40:34.042000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2314700"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKit. This flaw allows a remote attacker to perform arbitrary code execution when processing web content. This flaw is caused by insufficient input validation, which attackers could exploit to execute malicious code on affected systems.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This WebKit vulnerability marked as important because it enables remote attackers to execute malicious code on users\u0027 systems just by visiting compromised websites, posing significant risks like data theft and system compromise.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-27833"
        },
        {
          "category": "external",
          "summary": "RHBZ#2314700",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314700"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-27833",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-27833"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-27833",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27833"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0005.html",
          "url": "https://webkitgtk.org/security/WSA-2024-0005.html"
        }
      ],
      "release_date": "2024-09-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T15:34:16+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9679"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2024-27851",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2024-09-25T15:44:41.235000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2314704"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKit. This flaw allows a remote attacker to perform arbitrary code execution when processing web content. This flaw is caused by insufficient bounds checks, which could be exploited by attackers to execute malicious code on affected systems.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This WebKit vulnerability marked as important because it enables remote attackers to execute malicious code on users\u0027 systems just by visiting compromised websites, posing significant risks like data theft and system compromise.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-27851"
        },
        {
          "category": "external",
          "summary": "RHBZ#2314704",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314704"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-27851",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-27851"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-27851",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27851"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0005.html",
          "url": "https://webkitgtk.org/security/WSA-2024-0005.html"
        }
      ],
      "release_date": "2024-09-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T15:34:16+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9679"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution"
    },
    {
      "cve": "CVE-2024-27856",
      "cwe": {
        "id": "CWE-94",
        "name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
      },
      "discovery_date": "2025-02-10T09:34:34.705418+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2344618"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause unexpected app termination or arbitrary code execution due to improper checks.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing a file may lead to unexpected app termination or arbitrary code execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-27856"
        },
        {
          "category": "external",
          "summary": "RHBZ#2344618",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2344618"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-27856",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-27856"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-27856",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27856"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/120896",
          "url": "https://support.apple.com/en-us/120896"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/120898",
          "url": "https://support.apple.com/en-us/120898"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/120901",
          "url": "https://support.apple.com/en-us/120901"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/120902",
          "url": "https://support.apple.com/en-us/120902"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/120903",
          "url": "https://support.apple.com/en-us/120903"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/120905",
          "url": "https://support.apple.com/en-us/120905"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/120906",
          "url": "https://support.apple.com/en-us/120906"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0001.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0001.html"
        }
      ],
      "release_date": "2025-01-15T19:35:57.075000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T15:34:16+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9679"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing a file may lead to unexpected app termination or arbitrary code execution"
    },
    {
      "cve": "CVE-2024-40776",
      "discovery_date": "2024-07-30T20:48:03+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2301841"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKitGTK. A use-after-free may lead to Remote Code Execution. Users are advised to avoid processing untrusted web content in WebKitGTK.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: webkit2gtk: Use after free may lead to Remote Code Execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-40776"
        },
        {
          "category": "external",
          "summary": "RHBZ#2301841",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2301841"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-40776",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-40776"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-40776",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-40776"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0004.html",
          "url": "https://webkitgtk.org/security/WSA-2024-0004.html"
        }
      ],
      "release_date": "2024-07-30T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T15:34:16+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9679"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: webkit2gtk: Use after free may lead to Remote Code Execution"
    },
    {
      "cve": "CVE-2024-40779",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "discovery_date": "2024-07-31T15:05:50+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2302070"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can trigger an out-of-bounds read due to improper bounds checking, causing an unexpected process crash, resulting in a denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-40779"
        },
        {
          "category": "external",
          "summary": "RHBZ#2302070",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302070"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-40779",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-40779"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-40779",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-40779"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40779",
          "url": "https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40779"
        }
      ],
      "release_date": "2024-07-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T15:34:16+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9679"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking"
    },
    {
      "cve": "CVE-2024-40780",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "discovery_date": "2024-07-31T15:07:22+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2302069"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can trigger an out-of-bounds read due to improper bounds checking, causing an unexpected process crash, resulting in a denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-40780"
        },
        {
          "category": "external",
          "summary": "RHBZ#2302069",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302069"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-40780",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-40780"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-40780",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-40780"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40780",
          "url": "https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40780"
        }
      ],
      "release_date": "2024-07-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T15:34:16+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9679"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking"
    },
    {
      "cve": "CVE-2024-40782",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2024-07-31T14:57:24+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2302071"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can trigger a use-after-free issue due to improper bounds checking, causing an unexpected process crash, resulting in a denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: webkit2gtk: Use-after-free was addressed with improved memory management",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-40782"
        },
        {
          "category": "external",
          "summary": "RHBZ#2302071",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302071"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-40782",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-40782"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-40782",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-40782"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40782",
          "url": "https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40782"
        }
      ],
      "release_date": "2024-07-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T15:34:16+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9679"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: webkit2gtk: Use-after-free was addressed with improved memory management"
    },
    {
      "cve": "CVE-2024-40789",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "discovery_date": "2024-07-31T15:39:05+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2302067"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can trigger an out-of-bounds read due to improper bounds checking, causing an unexpected process crash, resulting in a denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-40789"
        },
        {
          "category": "external",
          "summary": "RHBZ#2302067",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302067"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-40789",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-40789"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-40789",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-40789"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40789",
          "url": "https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40789"
        }
      ],
      "release_date": "2024-07-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T15:34:16+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9679"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2024-44185",
      "cwe": {
        "id": "CWE-788",
        "name": "Access of Memory Location After End of Buffer"
      },
      "discovery_date": "2024-11-01T20:05:39.339000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2323263"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKitGTK, where processing maliciously crafted web content may lead to the program crashing. Code execution is not discarded as a consequence.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated as important severity because it allows maliciously crafted web content to crash the application, potentially leads to denial of service. While it does not compromise confidentiality or integrity, the ability to crash the program without requiring authentication poses a significant risk.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-44185"
        },
        {
          "category": "external",
          "summary": "RHBZ#2323263",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2323263"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-44185",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-44185"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-44185",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-44185"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2024-0006.html",
          "url": "https://webkitgtk.org/security/WSA-2024-0006.html"
        }
      ],
      "release_date": "2024-10-31T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T15:34:16+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9679"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2024-44244",
      "cwe": {
        "id": "CWE-788",
        "name": "Access of Memory Location After End of Buffer"
      },
      "discovery_date": "2024-11-01T21:06:58.389000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2323278"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in WebKitGTK, where processing maliciously crafted web content may lead to program to a crash. This issue occurs because code execution is not discarded as consequence.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-44244"
        },
        {
          "category": "external",
          "summary": "RHBZ#2323278",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2323278"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-44244",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-44244"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-44244",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-44244"
        }
      ],
      "release_date": "2024-01-31T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T15:34:16+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9679"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2024-54534",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "discovery_date": "2024-12-23T13:18:32.596325+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2333846"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause memory corruption due to improper memory handling.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkit: Processing maliciously crafted web content may lead to memory corruption",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-54534"
        },
        {
          "category": "external",
          "summary": "RHBZ#2333846",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2333846"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-54534",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-54534"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-54534",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-54534"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/121837",
          "url": "https://support.apple.com/en-us/121837"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/121839",
          "url": "https://support.apple.com/en-us/121839"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/121843",
          "url": "https://support.apple.com/en-us/121843"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/121844",
          "url": "https://support.apple.com/en-us/121844"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/121845",
          "url": "https://support.apple.com/en-us/121845"
        },
        {
          "category": "external",
          "summary": "https://support.apple.com/en-us/121846",
          "url": "https://support.apple.com/en-us/121846"
        }
      ],
      "release_date": "2024-12-11T22:58:39.974000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T15:34:16+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9679"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkit: Processing maliciously crafted web content may lead to memory corruption"
    },
    {
      "cve": "CVE-2025-24223",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2025-05-15T13:03:40.562000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2366499"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory handling and result in memory corruption.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to memory corruption",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-24223"
        },
        {
          "category": "external",
          "summary": "RHBZ#2366499",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2366499"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-24223",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-24223"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-24223",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-24223"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0004.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0004.html"
        }
      ],
      "release_date": "2025-05-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T15:34:16+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9679"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to memory corruption"
    },
    {
      "cve": "CVE-2025-24264",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2025-04-07T14:31:23.097000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2357918"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause an unexpected process crash due to improper memory handling.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-24264"
        },
        {
          "category": "external",
          "summary": "RHBZ#2357918",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2357918"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-24264",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-24264"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-24264",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-24264"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0003.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0003.html"
        }
      ],
      "release_date": "2025-04-07T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T15:34:16+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9679"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash"
    },
    {
      "cve": "CVE-2025-31204",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "discovery_date": "2025-05-15T13:04:43.281000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2366500"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause out-of-bounds memory access due to improper memory handling and result in memory corruption.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to memory corruption",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-31204"
        },
        {
          "category": "external",
          "summary": "RHBZ#2366500",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2366500"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-31204",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-31204"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-31204",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-31204"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0004.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0004.html"
        }
      ],
      "release_date": "2025-05-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T15:34:16+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9679"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to memory corruption"
    },
    {
      "cve": "CVE-2025-31206",
      "cwe": {
        "id": "CWE-843",
        "name": "Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)"
      },
      "discovery_date": "2025-05-15T13:06:54.355000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2366502"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a type confusion issue due to improper state handling and result in an unexpected crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-31206"
        },
        {
          "category": "external",
          "summary": "RHBZ#2366502",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2366502"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-31206",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-31206"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-31206",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-31206"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0004.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0004.html"
        }
      ],
      "release_date": "2025-05-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T15:34:16+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9679"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash"
    },
    {
      "cve": "CVE-2025-31215",
      "cwe": {
        "id": "CWE-476",
        "name": "NULL Pointer Dereference"
      },
      "discovery_date": "2025-05-15T13:07:56.027000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2366503"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a NULL pointer dereference due to improper checks, resulting in an unexpected process crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to trick a user into processing or loading malicious web content.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-31215"
        },
        {
          "category": "external",
          "summary": "RHBZ#2366503",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2366503"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-31215",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-31215"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-31215",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-31215"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0004.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0004.html"
        }
      ],
      "release_date": "2025-05-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T15:34:16+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9679"
        },
        {
          "category": "workaround",
          "details": "Do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and being used via a graphical interface to process untrusted web content, via GNOME for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43480",
      "cwe": {
        "id": "CWE-200",
        "name": "Exposure of Sensitive Information to an Unauthorized Actor"
      },
      "discovery_date": "2025-11-21T12:52:14.645000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2416338"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. A malicious website may exfiltrate data cross-origin due to improper checks.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: A malicious website may exfiltrate data cross-origin",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into visiting a malicious website, potentially exposing sensitive information. Due to this reason, this flaw has been rated with a moderate severity.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
          "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
          "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43480"
        },
        {
          "category": "external",
          "summary": "RHBZ#2416338",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2416338"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43480",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43480"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43480",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43480"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0008.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0008.html"
        }
      ],
      "release_date": "2025-11-20T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-14T15:34:16+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9679"
        },
        {
          "category": "workaround",
          "details": "Do not visit untrusted websites. Also, do not process or load untrusted web content with WebKitGTK.\n\nIn Red Hat Enterprise Linux 7, the following packages require WebKitGTK4: evolution-data-server, glade, gnome-boxes, gnome-initial-setup, gnome-online-accounts, gnome-shell, shotwell, sushi, and yelp.\n\nThis vulnerability can only be exploited when these packages are installed in the system and used via a graphical interface to process untrusted web content, via GNOME, for example. In gnome-shell, the vulnerability can be exploited by an attacker from the local network without user interaction.\n\nTo mitigate this vulnerability, consider removing these packages. Note that some of these packages are required by GNOME, removing them will also remove GNOME and other packages, breaking functionality. However, the server can still be used via the terminal interface.\n\nAdditionally, WebKitGTK3 is not required by any package. Therefore, it can be removed without consequences or break of functionality.",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.ppc64le",
            "AppStream-8.4.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.src",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-debugsource-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.46.3-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.i686",
            "AppStream-8.4.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.46.3-1.el8_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "webkitgtk: A malicious website may exfiltrate data cross-origin"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2023-42970 (GCVE-0-2023-42970)

Tags

Sightings

Nomenclature