OPENSUSE-SU-2019:0081-1 - Vulnerability-Lookup

OPENSUSE-SU-2019:0081-1

Vulnerability from csaf_opensuse - Published: 2019-03-23 10:47 - Updated: 2019-03-23 10:47

Summary

Security update for webkit2gtk3

Severity

Important

Notes

Title of the patch: Security update for webkit2gtk3

Description of the patch: This update for webkit2gtk3 to version 2.22.5 fixes the following issues: Security issues fixed: - CVE-2018-4372, CVE-2018-4345, CVE-2018-4386, CVE-2018-4375, CVE-2018-4376, CVE-2018-4378, CVE-2018-4382, CVE-2018-4392, CVE-2018-4416, CVE-2018-4191, CVE-2018-4197, CVE-2018-4299, CVE-2018-4306, CVE-2018-4309, CVE-2018-4312, CVE-2018-4314, CVE-2018-4315, CVE-2018-4316, CVE-2018-4317, CVE-2018-4318, CVE-2018-4319, CVE-2018-4323, CVE-2018-4328, CVE-2018-4358, CVE-2018-4359, CVE-2018-4361, CVE-2018-4373, CVE-2018-4162, CVE-2018-4163, CVE-2018-4165, CVE-2018-11713, CVE-2018-4207, CVE-2018-4208, CVE-2018-4209, CVE-2018-4210, CVE-2018-4212, CVE-2018-4213, CVE-2018-4437, CVE-2018-4438, CVE-2018-4441, CVE-2018-4442, CVE-2018-4443, CVE-2018-4464 (bsc#1119558, bsc#1116998, bsc#1110279) This update was imported from the SUSE:SLE-15:Update update project.

Patchnames: openSUSE-2019-81

Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

CVE-2018-11713

5.3 (Medium)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4162

7.5 (High)


                        
                          CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4163

8.3 (High)


                        
                          CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4165

7.5 (High)


                        
                          CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4191

8.8 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4197

8.8 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4207

8.8 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4208

8.8 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4209

8.8 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4210

8.8 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4212

8.8 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4213

8.8 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4299

8.8 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4306

8.8 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4309

6.1 (Medium)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4312

8.8 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4314

8.8 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4315

8.8 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4316

8.8 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4317

8.8 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4318

8.8 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4319

8.1 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4323

8.8 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4328

8.8 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4345

6.3 (Medium)


                        
                          CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4358

8.8 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4359

8.8 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4361

8.8 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4372

5.6 (Medium)


                        
                          CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4373

5.6 (Medium)


                        
                          CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4375

5.6 (Medium)


                        
                          CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4376

5.6 (Medium)


                        
                          CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4378

6.3 (Medium)


                        
                          CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4382

6.3 (Medium)


                        
                          CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4386

6.3 (Medium)


                        
                          CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4392

6.3 (Medium)


                        
                          CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4416

6.3 (Medium)


                        
                          CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4437

9.8 (Critical)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4438

9.8 (Critical)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4441

9.8 (Critical)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4442

9.8 (Critical)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4443

9.8 (Critical)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2018-4464

5.3 (Medium)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

References

URL

Category

	https://www.suse.com/support/security/rating/	external
	https://ftp.suse.com/pub/projects/security/csaf/o…	self
	https://lists.opensuse.org/archives/list/security…	self
	https://lists.opensuse.org/archives/list/security…	self
	https://bugzilla.suse.com/1110279	self
	https://bugzilla.suse.com/1116998	self
	https://bugzilla.suse.com/1119558	self
	https://www.suse.com/security/cve/CVE-2018-11713/	self
	https://www.suse.com/security/cve/CVE-2018-4162/	self
	https://www.suse.com/security/cve/CVE-2018-4163/	self
	https://www.suse.com/security/cve/CVE-2018-4165/	self
	https://www.suse.com/security/cve/CVE-2018-4191/	self
	https://www.suse.com/security/cve/CVE-2018-4197/	self
	https://www.suse.com/security/cve/CVE-2018-4207/	self
	https://www.suse.com/security/cve/CVE-2018-4208/	self
	https://www.suse.com/security/cve/CVE-2018-4209/	self
	https://www.suse.com/security/cve/CVE-2018-4210/	self
	https://www.suse.com/security/cve/CVE-2018-4212/	self
	https://www.suse.com/security/cve/CVE-2018-4213/	self
	https://www.suse.com/security/cve/CVE-2018-4299/	self
	https://www.suse.com/security/cve/CVE-2018-4306/	self
	https://www.suse.com/security/cve/CVE-2018-4309/	self
	https://www.suse.com/security/cve/CVE-2018-4312/	self
	https://www.suse.com/security/cve/CVE-2018-4314/	self
	https://www.suse.com/security/cve/CVE-2018-4315/	self
	https://www.suse.com/security/cve/CVE-2018-4316/	self
	https://www.suse.com/security/cve/CVE-2018-4317/	self
	https://www.suse.com/security/cve/CVE-2018-4318/	self
	https://www.suse.com/security/cve/CVE-2018-4319/	self
	https://www.suse.com/security/cve/CVE-2018-4323/	self
	https://www.suse.com/security/cve/CVE-2018-4328/	self
	https://www.suse.com/security/cve/CVE-2018-4345/	self
	https://www.suse.com/security/cve/CVE-2018-4358/	self
	https://www.suse.com/security/cve/CVE-2018-4359/	self
	https://www.suse.com/security/cve/CVE-2018-4361/	self
	https://www.suse.com/security/cve/CVE-2018-4372/	self
	https://www.suse.com/security/cve/CVE-2018-4373/	self
	https://www.suse.com/security/cve/CVE-2018-4375/	self
	https://www.suse.com/security/cve/CVE-2018-4376/	self
	https://www.suse.com/security/cve/CVE-2018-4378/	self
	https://www.suse.com/security/cve/CVE-2018-4382/	self
	https://www.suse.com/security/cve/CVE-2018-4386/	self
	https://www.suse.com/security/cve/CVE-2018-4392/	self
	https://www.suse.com/security/cve/CVE-2018-4416/	self
	https://www.suse.com/security/cve/CVE-2018-4437/	self
	https://www.suse.com/security/cve/CVE-2018-4438/	self
	https://www.suse.com/security/cve/CVE-2018-4441/	self
	https://www.suse.com/security/cve/CVE-2018-4442/	self
	https://www.suse.com/security/cve/CVE-2018-4443/	self
	https://www.suse.com/security/cve/CVE-2018-4464/	self
	https://www.suse.com/security/cve/CVE-2018-11713	external
	https://bugzilla.suse.com/1096060	external
	https://bugzilla.suse.com/1097693	external
	https://www.suse.com/security/cve/CVE-2018-4162	external
	https://bugzilla.suse.com/1088182	external
	https://www.suse.com/security/cve/CVE-2018-4163	external
	https://bugzilla.suse.com/1088182	external
	https://www.suse.com/security/cve/CVE-2018-4165	external
	https://bugzilla.suse.com/1088182	external
	https://www.suse.com/security/cve/CVE-2018-4191	external
	https://bugzilla.suse.com/1110279	external
	https://www.suse.com/security/cve/CVE-2018-4197	external
	https://bugzilla.suse.com/1110279	external
	https://www.suse.com/security/cve/CVE-2018-4207	external
	https://bugzilla.suse.com/1110279	external
	https://www.suse.com/security/cve/CVE-2018-4208	external
	https://bugzilla.suse.com/1110279	external
	https://www.suse.com/security/cve/CVE-2018-4209	external
	https://bugzilla.suse.com/1110279	external
	https://www.suse.com/security/cve/CVE-2018-4210	external
	https://bugzilla.suse.com/1110279	external
	https://www.suse.com/security/cve/CVE-2018-4212	external
	https://bugzilla.suse.com/1110279	external
	https://www.suse.com/security/cve/CVE-2018-4213	external
	https://bugzilla.suse.com/1110279	external
	https://www.suse.com/security/cve/CVE-2018-4299	external
	https://bugzilla.suse.com/1110279	external
	https://www.suse.com/security/cve/CVE-2018-4306	external
	https://bugzilla.suse.com/1110279	external
	https://www.suse.com/security/cve/CVE-2018-4309	external
	https://bugzilla.suse.com/1110279	external
	https://www.suse.com/security/cve/CVE-2018-4312	external
	https://bugzilla.suse.com/1110279	external
	https://www.suse.com/security/cve/CVE-2018-4314	external
	https://bugzilla.suse.com/1110279	external
	https://www.suse.com/security/cve/CVE-2018-4315	external
	https://bugzilla.suse.com/1110279	external
	https://www.suse.com/security/cve/CVE-2018-4316	external
	https://bugzilla.suse.com/1110279	external
	https://www.suse.com/security/cve/CVE-2018-4317	external
	https://bugzilla.suse.com/1110279	external
	https://www.suse.com/security/cve/CVE-2018-4318	external
	https://bugzilla.suse.com/1110279	external
	https://www.suse.com/security/cve/CVE-2018-4319	external
	https://bugzilla.suse.com/1110279	external
	https://www.suse.com/security/cve/CVE-2018-4323	external
	https://bugzilla.suse.com/1110279	external
	https://www.suse.com/security/cve/CVE-2018-4328	external
	https://bugzilla.suse.com/1110279	external
	https://www.suse.com/security/cve/CVE-2018-4345	external
	https://bugzilla.suse.com/1116998	external
	https://www.suse.com/security/cve/CVE-2018-4358	external
	https://bugzilla.suse.com/1110279	external
	https://www.suse.com/security/cve/CVE-2018-4359	external
	https://bugzilla.suse.com/1110279	external
	https://www.suse.com/security/cve/CVE-2018-4361	external
	https://bugzilla.suse.com/1110279	external
	https://www.suse.com/security/cve/CVE-2018-4372	external
	https://bugzilla.suse.com/1116998	external
	https://www.suse.com/security/cve/CVE-2018-4373	external
	https://bugzilla.suse.com/1116998	external
	https://www.suse.com/security/cve/CVE-2018-4375	external
	https://bugzilla.suse.com/1116998	external
	https://www.suse.com/security/cve/CVE-2018-4376	external
	https://bugzilla.suse.com/1116998	external
	https://www.suse.com/security/cve/CVE-2018-4378	external
	https://bugzilla.suse.com/1116998	external
	https://www.suse.com/security/cve/CVE-2018-4382	external
	https://bugzilla.suse.com/1116998	external
	https://www.suse.com/security/cve/CVE-2018-4386	external
	https://bugzilla.suse.com/1116998	external
	https://www.suse.com/security/cve/CVE-2018-4392	external
	https://bugzilla.suse.com/1116998	external
	https://www.suse.com/security/cve/CVE-2018-4416	external
	https://bugzilla.suse.com/1116998	external
	https://www.suse.com/security/cve/CVE-2018-4437	external
	https://bugzilla.suse.com/1119553	external
	https://www.suse.com/security/cve/CVE-2018-4438	external
	https://bugzilla.suse.com/1119554	external
	https://www.suse.com/security/cve/CVE-2018-4441	external
	https://bugzilla.suse.com/1119555	external
	https://www.suse.com/security/cve/CVE-2018-4442	external
	https://bugzilla.suse.com/1119556	external
	https://www.suse.com/security/cve/CVE-2018-4443	external
	https://bugzilla.suse.com/1119557	external
	https://www.suse.com/security/cve/CVE-2018-4464	external
	https://bugzilla.suse.com/1119553	external
	https://bugzilla.suse.com/1119558	external

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for webkit2gtk3",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for webkit2gtk3 to version 2.22.5 fixes the following issues:\n\nSecurity issues fixed:\n\n- CVE-2018-4372, CVE-2018-4345, CVE-2018-4386, CVE-2018-4375, CVE-2018-4376, CVE-2018-4378, CVE-2018-4382,\n  CVE-2018-4392, CVE-2018-4416, CVE-2018-4191, CVE-2018-4197, CVE-2018-4299, CVE-2018-4306, CVE-2018-4309,\n  CVE-2018-4312, CVE-2018-4314, CVE-2018-4315, CVE-2018-4316, CVE-2018-4317, CVE-2018-4318, CVE-2018-4319,\n  CVE-2018-4323, CVE-2018-4328, CVE-2018-4358, CVE-2018-4359, CVE-2018-4361, CVE-2018-4373, CVE-2018-4162, \n  CVE-2018-4163, CVE-2018-4165, CVE-2018-11713, CVE-2018-4207, CVE-2018-4208, CVE-2018-4209, CVE-2018-4210,\n  CVE-2018-4212, CVE-2018-4213, CVE-2018-4437, CVE-2018-4438, CVE-2018-4441, CVE-2018-4442, CVE-2018-4443,\n  CVE-2018-4464 (bsc#1119558, bsc#1116998, bsc#1110279)\n\nThis update was imported from the SUSE:SLE-15:Update update project.",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-2019-81",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2019_0081-1.json"
      },
      {
        "category": "self",
        "summary": "URL for openSUSE-SU-2019:0081-1",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/N3LMCXDRCX64PDIK6OOJOXY7AAXP7POU/#N3LMCXDRCX64PDIK6OOJOXY7AAXP7POU"
      },
      {
        "category": "self",
        "summary": "E-Mail link for openSUSE-SU-2019:0081-1",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/N3LMCXDRCX64PDIK6OOJOXY7AAXP7POU/#N3LMCXDRCX64PDIK6OOJOXY7AAXP7POU"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1110279",
        "url": "https://bugzilla.suse.com/1110279"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1116998",
        "url": "https://bugzilla.suse.com/1116998"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1119558",
        "url": "https://bugzilla.suse.com/1119558"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-11713 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-11713/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4162 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4162/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4163 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4163/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4165 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4165/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4191 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4191/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4197 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4197/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4207 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4207/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4208 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4208/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4209 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4209/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4210 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4210/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4212 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4212/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4213 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4213/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4299 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4299/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4306 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4306/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4309 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4309/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4312 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4312/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4314 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4314/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4315 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4315/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4316 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4316/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4317 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4317/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4318 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4318/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4319 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4319/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4323 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4323/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4328 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4328/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4345 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4345/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4358 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4358/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4359 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4359/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4361 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4361/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4372 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4372/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4373 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4373/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4375 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4375/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4376 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4376/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4378 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4378/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4382 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4382/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4386 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4386/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4392 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4392/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4416 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4416/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4437 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4437/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4438 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4438/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4441 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4441/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4442 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4442/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4443 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4443/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-4464 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-4464/"
      }
    ],
    "title": "Security update for webkit2gtk3",
    "tracking": {
      "current_release_date": "2019-03-23T10:47:50Z",
      "generator": {
        "date": "2019-03-23T10:47:50Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2019:0081-1",
      "initial_release_date": "2019-03-23T10:47:50Z",
      "revision_history": [
        {
          "date": "2019-03-23T10:47:50Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
                "product": {
                  "name": "libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
                  "product_id": "libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
                "product": {
                  "name": "libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
                  "product_id": "libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
                "product": {
                  "name": "typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
                  "product_id": "typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
                "product": {
                  "name": "typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
                  "product_id": "typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
                "product": {
                  "name": "typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
                  "product_id": "typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
                "product": {
                  "name": "webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
                  "product_id": "webkit-jsc-4-2.22.5-lp150.2.9.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
                "product": {
                  "name": "webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
                  "product_id": "webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
                "product": {
                  "name": "webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
                  "product_id": "webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
                "product": {
                  "name": "webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
                  "product_id": "webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
                "product": {
                  "name": "webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
                  "product_id": "webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586"
                }
              }
            ],
            "category": "architecture",
            "name": "i586"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
                "product": {
                  "name": "libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
                  "product_id": "libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch"
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
                "product": {
                  "name": "libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
                  "product_id": "libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
                "product": {
                  "name": "libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
                  "product_id": "libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
                "product": {
                  "name": "libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
                  "product_id": "libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
                "product": {
                  "name": "libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
                  "product_id": "libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
                "product": {
                  "name": "typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
                  "product_id": "typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
                "product": {
                  "name": "typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
                  "product_id": "typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
                "product": {
                  "name": "typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
                  "product_id": "typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
                "product": {
                  "name": "webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
                  "product_id": "webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
                "product": {
                  "name": "webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
                  "product_id": "webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
                "product": {
                  "name": "webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
                  "product_id": "webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
                "product": {
                  "name": "webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
                  "product_id": "webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64",
                "product": {
                  "name": "webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64",
                  "product_id": "webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Leap 15.0",
                "product": {
                  "name": "openSUSE Leap 15.0",
                  "product_id": "openSUSE Leap 15.0",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:leap:15.0"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0",
          "product_id": "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586"
        },
        "product_reference": "libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
        "relates_to_product_reference": "openSUSE Leap 15.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0",
          "product_id": "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64"
        },
        "product_reference": "libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0",
          "product_id": "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64"
        },
        "product_reference": "libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0",
          "product_id": "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586"
        },
        "product_reference": "libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
        "relates_to_product_reference": "openSUSE Leap 15.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0",
          "product_id": "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64"
        },
        "product_reference": "libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0",
          "product_id": "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64"
        },
        "product_reference": "libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch as component of openSUSE Leap 15.0",
          "product_id": "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch"
        },
        "product_reference": "libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
        "relates_to_product_reference": "openSUSE Leap 15.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0",
          "product_id": "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586"
        },
        "product_reference": "typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
        "relates_to_product_reference": "openSUSE Leap 15.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0",
          "product_id": "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64"
        },
        "product_reference": "typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0",
          "product_id": "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586"
        },
        "product_reference": "typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
        "relates_to_product_reference": "openSUSE Leap 15.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0",
          "product_id": "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64"
        },
        "product_reference": "typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0",
          "product_id": "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586"
        },
        "product_reference": "typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
        "relates_to_product_reference": "openSUSE Leap 15.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0",
          "product_id": "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64"
        },
        "product_reference": "typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit-jsc-4-2.22.5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0",
          "product_id": "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586"
        },
        "product_reference": "webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
        "relates_to_product_reference": "openSUSE Leap 15.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0",
          "product_id": "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64"
        },
        "product_reference": "webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0",
          "product_id": "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586"
        },
        "product_reference": "webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
        "relates_to_product_reference": "openSUSE Leap 15.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0",
          "product_id": "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64"
        },
        "product_reference": "webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0",
          "product_id": "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586"
        },
        "product_reference": "webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
        "relates_to_product_reference": "openSUSE Leap 15.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0",
          "product_id": "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0",
          "product_id": "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586"
        },
        "product_reference": "webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
        "relates_to_product_reference": "openSUSE Leap 15.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0",
          "product_id": "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64"
        },
        "product_reference": "webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0",
          "product_id": "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586"
        },
        "product_reference": "webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
        "relates_to_product_reference": "openSUSE Leap 15.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0",
          "product_id": "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        },
        "product_reference": "webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.0"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2018-11713",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-11713"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "WebCore/platform/network/soup/SocketStreamHandleImplSoup.cpp in the libsoup network backend of WebKit, as used in WebKitGTK+ prior to version 2.20.0 or without libsoup 2.62.0, unexpectedly failed to use system proxy settings for WebSocket connections. As a result, users could be deanonymized by crafted web sites via a WebSocket connection.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-11713",
          "url": "https://www.suse.com/security/cve/CVE-2018-11713"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1096060 for CVE-2018-11713",
          "url": "https://bugzilla.suse.com/1096060"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1097693 for CVE-2018-11713",
          "url": "https://bugzilla.suse.com/1097693"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-11713"
    },
    {
      "cve": "CVE-2018-4162",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4162"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. watchOS before 4.3 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4162",
          "url": "https://www.suse.com/security/cve/CVE-2018-4162"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1088182 for CVE-2018-4162",
          "url": "https://bugzilla.suse.com/1088182"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-4162"
    },
    {
      "cve": "CVE-2018-4163",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4163"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. watchOS before 4.3 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4163",
          "url": "https://www.suse.com/security/cve/CVE-2018-4163"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1088182 for CVE-2018-4163",
          "url": "https://bugzilla.suse.com/1088182"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.3,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-4163"
    },
    {
      "cve": "CVE-2018-4165",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4165"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4165",
          "url": "https://www.suse.com/security/cve/CVE-2018-4165"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1088182 for CVE-2018-4165",
          "url": "https://bugzilla.suse.com/1088182"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-4165"
    },
    {
      "cve": "CVE-2018-4191",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4191"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A memory corruption issue was addressed with improved validation. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4191",
          "url": "https://www.suse.com/security/cve/CVE-2018-4191"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1110279 for CVE-2018-4191",
          "url": "https://bugzilla.suse.com/1110279"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-4191"
    },
    {
      "cve": "CVE-2018-4197",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4197"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4197",
          "url": "https://www.suse.com/security/cve/CVE-2018-4197"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1110279 for CVE-2018-4197",
          "url": "https://bugzilla.suse.com/1110279"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-4197"
    },
    {
      "cve": "CVE-2018-4207",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4207"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. This issue was addressed with improved checks.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4207",
          "url": "https://www.suse.com/security/cve/CVE-2018-4207"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1110279 for CVE-2018-4207",
          "url": "https://bugzilla.suse.com/1110279"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-4207"
    },
    {
      "cve": "CVE-2018-4208",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4208"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. This issue was addressed with improved checks.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4208",
          "url": "https://www.suse.com/security/cve/CVE-2018-4208"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1110279 for CVE-2018-4208",
          "url": "https://bugzilla.suse.com/1110279"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-4208"
    },
    {
      "cve": "CVE-2018-4209",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4209"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. This issue was addressed with improved checks.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4209",
          "url": "https://www.suse.com/security/cve/CVE-2018-4209"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1110279 for CVE-2018-4209",
          "url": "https://bugzilla.suse.com/1110279"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-4209"
    },
    {
      "cve": "CVE-2018-4210",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4210"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In iOS before 11.3, Safari before 11.1, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, an array indexing issue existed in the handling of a function in javascript core. This issue was addressed with improved checks.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4210",
          "url": "https://www.suse.com/security/cve/CVE-2018-4210"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1110279 for CVE-2018-4210",
          "url": "https://bugzilla.suse.com/1110279"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-4210"
    },
    {
      "cve": "CVE-2018-4212",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4212"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. This issue was addressed with improved checks.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4212",
          "url": "https://www.suse.com/security/cve/CVE-2018-4212"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1110279 for CVE-2018-4212",
          "url": "https://bugzilla.suse.com/1110279"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-4212"
    },
    {
      "cve": "CVE-2018-4213",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4213"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. This issue was addressed with improved checks.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4213",
          "url": "https://www.suse.com/security/cve/CVE-2018-4213"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1110279 for CVE-2018-4213",
          "url": "https://bugzilla.suse.com/1110279"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-4213"
    },
    {
      "cve": "CVE-2018-4299",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4299"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4299",
          "url": "https://www.suse.com/security/cve/CVE-2018-4299"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1110279 for CVE-2018-4299",
          "url": "https://bugzilla.suse.com/1110279"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-4299"
    },
    {
      "cve": "CVE-2018-4306",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4306"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4306",
          "url": "https://www.suse.com/security/cve/CVE-2018-4306"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1110279 for CVE-2018-4306",
          "url": "https://bugzilla.suse.com/1110279"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-4306"
    },
    {
      "cve": "CVE-2018-4309",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4309"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A cross-site scripting issue existed in Safari. This issue was addressed with improved URL validation. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4309",
          "url": "https://www.suse.com/security/cve/CVE-2018-4309"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1110279 for CVE-2018-4309",
          "url": "https://bugzilla.suse.com/1110279"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-4309"
    },
    {
      "cve": "CVE-2018-4312",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4312"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4312",
          "url": "https://www.suse.com/security/cve/CVE-2018-4312"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1110279 for CVE-2018-4312",
          "url": "https://bugzilla.suse.com/1110279"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-4312"
    },
    {
      "cve": "CVE-2018-4314",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4314"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4314",
          "url": "https://www.suse.com/security/cve/CVE-2018-4314"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1110279 for CVE-2018-4314",
          "url": "https://bugzilla.suse.com/1110279"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-4314"
    },
    {
      "cve": "CVE-2018-4315",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4315"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4315",
          "url": "https://www.suse.com/security/cve/CVE-2018-4315"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1110279 for CVE-2018-4315",
          "url": "https://bugzilla.suse.com/1110279"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-4315"
    },
    {
      "cve": "CVE-2018-4316",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4316"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A memory corruption issue was addressed with improved state management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4316",
          "url": "https://www.suse.com/security/cve/CVE-2018-4316"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1110279 for CVE-2018-4316",
          "url": "https://bugzilla.suse.com/1110279"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-4316"
    },
    {
      "cve": "CVE-2018-4317",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4317"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4317",
          "url": "https://www.suse.com/security/cve/CVE-2018-4317"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1110279 for CVE-2018-4317",
          "url": "https://bugzilla.suse.com/1110279"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-4317"
    },
    {
      "cve": "CVE-2018-4318",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4318"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4318",
          "url": "https://www.suse.com/security/cve/CVE-2018-4318"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1110279 for CVE-2018-4318",
          "url": "https://bugzilla.suse.com/1110279"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-4318"
    },
    {
      "cve": "CVE-2018-4319",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4319"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A cross-origin issue existed with \"iframe\" elements. This was addressed with improved tracking of security origins. This issue affected versions prior to iOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4319",
          "url": "https://www.suse.com/security/cve/CVE-2018-4319"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1110279 for CVE-2018-4319",
          "url": "https://bugzilla.suse.com/1110279"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-4319"
    },
    {
      "cve": "CVE-2018-4323",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4323"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4323",
          "url": "https://www.suse.com/security/cve/CVE-2018-4323"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1110279 for CVE-2018-4323",
          "url": "https://bugzilla.suse.com/1110279"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-4323"
    },
    {
      "cve": "CVE-2018-4328",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4328"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4328",
          "url": "https://www.suse.com/security/cve/CVE-2018-4328"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1110279 for CVE-2018-4328",
          "url": "https://bugzilla.suse.com/1110279"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-4328"
    },
    {
      "cve": "CVE-2018-4345",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4345"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A cross-site scripting issue existed in Safari. This issue was addressed with improved URL validation. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4345",
          "url": "https://www.suse.com/security/cve/CVE-2018-4345"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1116998 for CVE-2018-4345",
          "url": "https://bugzilla.suse.com/1116998"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-4345"
    },
    {
      "cve": "CVE-2018-4358",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4358"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4358",
          "url": "https://www.suse.com/security/cve/CVE-2018-4358"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1110279 for CVE-2018-4358",
          "url": "https://bugzilla.suse.com/1110279"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-4358"
    },
    {
      "cve": "CVE-2018-4359",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4359"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4359",
          "url": "https://www.suse.com/security/cve/CVE-2018-4359"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1110279 for CVE-2018-4359",
          "url": "https://bugzilla.suse.com/1110279"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-4359"
    },
    {
      "cve": "CVE-2018-4361",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4361"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A memory consumption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4361",
          "url": "https://www.suse.com/security/cve/CVE-2018-4361"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1110279 for CVE-2018-4361",
          "url": "https://bugzilla.suse.com/1110279"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-4361"
    },
    {
      "cve": "CVE-2018-4372",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4372"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4372",
          "url": "https://www.suse.com/security/cve/CVE-2018-4372"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1116998 for CVE-2018-4372",
          "url": "https://bugzilla.suse.com/1116998"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-4372"
    },
    {
      "cve": "CVE-2018-4373",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4373"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4373",
          "url": "https://www.suse.com/security/cve/CVE-2018-4373"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1116998 for CVE-2018-4373",
          "url": "https://bugzilla.suse.com/1116998"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-4373"
    },
    {
      "cve": "CVE-2018-4375",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4375"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4375",
          "url": "https://www.suse.com/security/cve/CVE-2018-4375"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1116998 for CVE-2018-4375",
          "url": "https://bugzilla.suse.com/1116998"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-4375"
    },
    {
      "cve": "CVE-2018-4376",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4376"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4376",
          "url": "https://www.suse.com/security/cve/CVE-2018-4376"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1116998 for CVE-2018-4376",
          "url": "https://bugzilla.suse.com/1116998"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-4376"
    },
    {
      "cve": "CVE-2018-4378",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4378"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A memory corruption issue was addressed with improved validation. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4378",
          "url": "https://www.suse.com/security/cve/CVE-2018-4378"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1116998 for CVE-2018-4378",
          "url": "https://bugzilla.suse.com/1116998"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-4378"
    },
    {
      "cve": "CVE-2018-4382",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4382"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4382",
          "url": "https://www.suse.com/security/cve/CVE-2018-4382"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1116998 for CVE-2018-4382",
          "url": "https://bugzilla.suse.com/1116998"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-4382"
    },
    {
      "cve": "CVE-2018-4386",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4386"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4386",
          "url": "https://www.suse.com/security/cve/CVE-2018-4386"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1116998 for CVE-2018-4386",
          "url": "https://bugzilla.suse.com/1116998"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-4386"
    },
    {
      "cve": "CVE-2018-4392",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4392"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4392",
          "url": "https://www.suse.com/security/cve/CVE-2018-4392"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1116998 for CVE-2018-4392",
          "url": "https://bugzilla.suse.com/1116998"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-4392"
    },
    {
      "cve": "CVE-2018-4416",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4416"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4416",
          "url": "https://www.suse.com/security/cve/CVE-2018-4416"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1116998 for CVE-2018-4416",
          "url": "https://bugzilla.suse.com/1116998"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-4416"
    },
    {
      "cve": "CVE-2018-4437",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4437"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4437",
          "url": "https://www.suse.com/security/cve/CVE-2018-4437"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1119553 for CVE-2018-4437",
          "url": "https://bugzilla.suse.com/1119553"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "critical"
        }
      ],
      "title": "CVE-2018-4437"
    },
    {
      "cve": "CVE-2018-4438",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4438"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A logic issue existed resulting in memory corruption. This was addressed with improved state management. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4438",
          "url": "https://www.suse.com/security/cve/CVE-2018-4438"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1119554 for CVE-2018-4438",
          "url": "https://bugzilla.suse.com/1119554"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "critical"
        }
      ],
      "title": "CVE-2018-4438"
    },
    {
      "cve": "CVE-2018-4441",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4441"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4441",
          "url": "https://www.suse.com/security/cve/CVE-2018-4441"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1119555 for CVE-2018-4441",
          "url": "https://bugzilla.suse.com/1119555"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "critical"
        }
      ],
      "title": "CVE-2018-4441"
    },
    {
      "cve": "CVE-2018-4442",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4442"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4442",
          "url": "https://www.suse.com/security/cve/CVE-2018-4442"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1119556 for CVE-2018-4442",
          "url": "https://bugzilla.suse.com/1119556"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "critical"
        }
      ],
      "title": "CVE-2018-4442"
    },
    {
      "cve": "CVE-2018-4443",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4443"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4443",
          "url": "https://www.suse.com/security/cve/CVE-2018-4443"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1119557 for CVE-2018-4443",
          "url": "https://bugzilla.suse.com/1119557"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "critical"
        }
      ],
      "title": "CVE-2018-4443"
    },
    {
      "cve": "CVE-2018-4464",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-4464"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-4464",
          "url": "https://www.suse.com/security/cve/CVE-2018-4464"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1119553 for CVE-2018-4464",
          "url": "https://bugzilla.suse.com/1119553"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1119558 for CVE-2018-4464",
          "url": "https://bugzilla.suse.com/1119558"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-03-23T10:47:50Z",
          "details": "critical"
        }
      ],
      "title": "CVE-2018-4464"
    }
  ]
}

CVE-2018-4312 (GCVE-0-2018-4312)

Vulnerability from cvelistv5 – Published: 2019-04-03 17:43 – Updated: 2024-08-05 05:11

Summary

A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.

Severity ?

No CVSS data available.

CWE

Processing maliciously crafted web content may lead to arbitrary code execution

Assigner

apple

References

URL

Tags

	https://support.apple.com/kb/HT209141	x_refsource_MISC
	https://support.apple.com/kb/HT209140	x_refsource_MISC
	https://support.apple.com/kb/HT209107	x_refsource_MISC
	https://support.apple.com/kb/HT209106	x_refsource_MISC
	https://support.apple.com/kb/HT209109	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	iOS, tvOS, Safari, iTunes for Windows, iCloud for Windows	Affected: Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:11:22.455Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209141"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209140"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209107"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209106"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209109"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS, tvOS, Safari,  iTunes for Windows, iCloud for Windows",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Processing maliciously crafted web content may lead to arbitrary code execution",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-04-04T19:44:08.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209141"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209140"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209107"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209106"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209109"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4312",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "iOS, tvOS, Safari,  iTunes for Windows, iCloud for Windows",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Processing maliciously crafted web content may lead to arbitrary code execution"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/kb/HT209141",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209141"
            },
            {
              "name": "https://support.apple.com/kb/HT209140",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209140"
            },
            {
              "name": "https://support.apple.com/kb/HT209107",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209107"
            },
            {
              "name": "https://support.apple.com/kb/HT209106",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209106"
            },
            {
              "name": "https://support.apple.com/kb/HT209109",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209109"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4312",
    "datePublished": "2019-04-03T17:43:14.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:11:22.455Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-4345 (GCVE-0-2018-4345)

Vulnerability from cvelistv5 – Published: 2019-04-03 17:43 – Updated: 2024-08-05 05:11

Summary

A cross-site scripting issue existed in Safari. This issue was addressed with improved URL validation. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.

Severity ?

No CVSS data available.

CWE

A malicious website may exfiltrate image data cross-origin

Assigner

apple

References

URL

Tags

	https://support.apple.com/kb/HT209141	x_refsource_MISC
	https://support.apple.com/kb/HT209140	x_refsource_MISC
	https://support.apple.com/kb/HT209107	x_refsource_MISC
	https://support.apple.com/kb/HT209106	x_refsource_MISC
	https://support.apple.com/kb/HT209109	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	iOS, tvOS, Safari, iTunes for Windows, iCloud for Windows	Affected: Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:11:22.726Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209141"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209140"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209107"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209106"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209109"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS, tvOS, Safari,  iTunes for Windows, iCloud for Windows",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A cross-site scripting issue existed in Safari. This issue was addressed with improved URL validation. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "A malicious website may exfiltrate image data cross-origin",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-04-03T17:43:15.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209141"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209140"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209107"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209106"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209109"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4345",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "iOS, tvOS, Safari,  iTunes for Windows, iCloud for Windows",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A cross-site scripting issue existed in Safari. This issue was addressed with improved URL validation. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "A malicious website may exfiltrate image data cross-origin"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/kb/HT209141",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209141"
            },
            {
              "name": "https://support.apple.com/kb/HT209140",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209140"
            },
            {
              "name": "https://support.apple.com/kb/HT209107",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209107"
            },
            {
              "name": "https://support.apple.com/kb/HT209106",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209106"
            },
            {
              "name": "https://support.apple.com/kb/HT209109",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209109"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4345",
    "datePublished": "2019-04-03T17:43:15.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:11:22.726Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-4373 (GCVE-0-2018-4373)

Vulnerability from cvelistv5 – Published: 2019-04-03 17:43 – Updated: 2024-08-05 05:11

Summary

Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.

Severity ?

No CVSS data available.

CWE

Processing maliciously crafted web content may lead to arbitrary code execution

Assigner

apple

References

URL

Tags

	https://support.apple.com/kb/HT209192	x_refsource_MISC
	https://support.apple.com/kb/HT209195	x_refsource_MISC
	https://support.apple.com/kb/HT209197	x_refsource_MISC
	https://support.apple.com/kb/HT209198	x_refsource_MISC
	https://support.apple.com/kb/HT209196	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	iOS, watchOS, Safari, iTunes for Windows, iCloud for Windows	Affected: Versions prior to: iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:11:22.785Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209192"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209195"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209197"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209198"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209196"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Versions prior to: iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Processing maliciously crafted web content may lead to arbitrary code execution",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-04-03T17:43:16.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209192"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209195"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209197"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209198"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209196"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4373",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "iOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions prior to: iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Processing maliciously crafted web content may lead to arbitrary code execution"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/kb/HT209192",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209192"
            },
            {
              "name": "https://support.apple.com/kb/HT209195",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209195"
            },
            {
              "name": "https://support.apple.com/kb/HT209197",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209197"
            },
            {
              "name": "https://support.apple.com/kb/HT209198",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209198"
            },
            {
              "name": "https://support.apple.com/kb/HT209196",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209196"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4373",
    "datePublished": "2019-04-03T17:43:16.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:11:22.785Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-4213 (GCVE-0-2018-4213)

Vulnerability from cvelistv5 – Published: 2019-01-11 18:00 – Updated: 2024-08-05 05:04

Summary

In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. This issue was addressed with improved checks.

Severity ?

No CVSS data available.

CWE

n/a

Assigner

apple

References

URL

Tags

	https://support.apple.com/HT208695%2C	x_refsource_MISC
	https://support.apple.com/HT208697%2C	x_refsource_MISC
	https://support.apple.com/HT208693%2Chttps://supp…	x_refsource_MISC
	https://support.apple.com/HT208696%2C	x_refsource_MISC
	https://usn.ubuntu.com/3781-1/	vendor-advisoryx_refsource_UBUNTU
	https://security.gentoo.org/glsa/201812-04	vendor-advisoryx_refsource_GENTOO
	https://support.apple.com/HT208694	x_refsource_CONFIRM

Date Public ?

2019-01-11 00:00

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:04:29.876Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208695%2C"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208697%2C"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208693%2Chttps://support.apple.com/HT208698%2C"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208696%2C"
          },
          {
            "name": "USN-3781-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3781-1/"
          },
          {
            "name": "GLSA-201812-04",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/201812-04"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208694"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2019-01-11T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. This issue was addressed with improved checks."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-01-12T10:57:01.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/HT208695%2C"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/HT208697%2C"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/HT208693%2Chttps://support.apple.com/HT208698%2C"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/HT208696%2C"
        },
        {
          "name": "USN-3781-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3781-1/"
        },
        {
          "name": "GLSA-201812-04",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/201812-04"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.apple.com/HT208694"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4213",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. This issue was addressed with improved checks."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/HT208695,",
              "refsource": "MISC",
              "url": "https://support.apple.com/HT208695,"
            },
            {
              "name": "https://support.apple.com/HT208697,",
              "refsource": "MISC",
              "url": "https://support.apple.com/HT208697,"
            },
            {
              "name": "https://support.apple.com/HT208693,https://support.apple.com/HT208698,",
              "refsource": "MISC",
              "url": "https://support.apple.com/HT208693,https://support.apple.com/HT208698,"
            },
            {
              "name": "https://support.apple.com/HT208696,",
              "refsource": "MISC",
              "url": "https://support.apple.com/HT208696,"
            },
            {
              "name": "USN-3781-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/3781-1/"
            },
            {
              "name": "GLSA-201812-04",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/201812-04"
            },
            {
              "name": "https://support.apple.com/HT208694",
              "refsource": "CONFIRM",
              "url": "https://support.apple.com/HT208694"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4213",
    "datePublished": "2019-01-11T18:00:00.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:04:29.876Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-4191 (GCVE-0-2018-4191)

Vulnerability from cvelistv5 – Published: 2019-04-03 17:43 – Updated: 2024-08-05 05:04

Summary

A memory corruption issue was addressed with improved validation. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.

Severity ?

No CVSS data available.

CWE

Unexpected interaction causes an ASSERT failure

Assigner

apple

References

URL

Tags

	https://support.apple.com/kb/HT209141	x_refsource_MISC
	https://support.apple.com/kb/HT209140	x_refsource_MISC
	https://support.apple.com/kb/HT209107	x_refsource_MISC
	https://support.apple.com/kb/HT209106	x_refsource_MISC
	https://support.apple.com/kb/HT209108	x_refsource_MISC
	https://support.apple.com/kb/HT209109	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	iOS, tvOS, watchOS, Safari, iTunes for Windows, iCloud for Windows	Affected: Versions prior to: iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:04:30.188Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209141"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209140"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209107"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209106"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209108"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209109"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS, tvOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Versions prior to: iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A memory corruption issue was addressed with improved validation. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Unexpected interaction causes an ASSERT failure",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-04-03T17:43:12.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209141"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209140"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209107"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209106"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209108"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209109"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4191",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "iOS, tvOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions prior to: iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A memory corruption issue was addressed with improved validation. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Unexpected interaction causes an ASSERT failure"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/kb/HT209141",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209141"
            },
            {
              "name": "https://support.apple.com/kb/HT209140",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209140"
            },
            {
              "name": "https://support.apple.com/kb/HT209107",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209107"
            },
            {
              "name": "https://support.apple.com/kb/HT209106",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209106"
            },
            {
              "name": "https://support.apple.com/kb/HT209108",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209108"
            },
            {
              "name": "https://support.apple.com/kb/HT209109",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209109"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4191",
    "datePublished": "2019-04-03T17:43:12.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:04:30.188Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-4376 (GCVE-0-2018-4376)

Vulnerability from cvelistv5 – Published: 2019-04-03 17:43 – Updated: 2024-08-05 05:11

Summary

Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.

Severity ?

No CVSS data available.

CWE

Processing maliciously crafted web content may lead to arbitrary code execution

Assigner

apple

References

URL

Tags

	https://support.apple.com/kb/HT209192	x_refsource_MISC
	https://support.apple.com/kb/HT209195	x_refsource_MISC
	https://support.apple.com/kb/HT209197	x_refsource_MISC
	https://support.apple.com/kb/HT209198	x_refsource_MISC
	https://support.apple.com/kb/HT209196	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	iOS, watchOS, Safari, iTunes for Windows, iCloud for Windows	Affected: Versions prior to: iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:11:22.725Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209192"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209195"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209197"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209198"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209196"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Versions prior to: iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Processing maliciously crafted web content may lead to arbitrary code execution",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-04-03T17:43:16.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209192"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209195"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209197"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209198"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209196"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4376",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "iOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions prior to: iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Processing maliciously crafted web content may lead to arbitrary code execution"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/kb/HT209192",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209192"
            },
            {
              "name": "https://support.apple.com/kb/HT209195",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209195"
            },
            {
              "name": "https://support.apple.com/kb/HT209197",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209197"
            },
            {
              "name": "https://support.apple.com/kb/HT209198",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209198"
            },
            {
              "name": "https://support.apple.com/kb/HT209196",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209196"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4376",
    "datePublished": "2019-04-03T17:43:16.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:11:22.725Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-11713 (GCVE-0-2018-11713)

Vulnerability from cvelistv5 – Published: 2018-06-04 14:00 – Updated: 2024-08-05 08:17

Summary

WebCore/platform/network/soup/SocketStreamHandleImplSoup.cpp in the libsoup network backend of WebKit, as used in WebKitGTK+ prior to version 2.20.0 or without libsoup 2.62.0, unexpectedly failed to use system proxy settings for WebSocket connections. As a result, users could be deanonymized by crafted web sites via a WebSocket connection.

Severity ?

No CVSS data available.

CWE

n/a

Assigner

mitre

References

URL

Tags

	https://trac.webkit.org/changeset/228088/webkit	x_refsource_MISC
	https://security.gentoo.org/glsa/201808-04	vendor-advisoryx_refsource_GENTOO
	https://bugs.webkit.org/show_bug.cgi?id=126384	x_refsource_MISC

Date Public ?

2018-06-04 00:00

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T08:17:08.955Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://trac.webkit.org/changeset/228088/webkit"
          },
          {
            "name": "GLSA-201808-04",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/201808-04"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://bugs.webkit.org/show_bug.cgi?id=126384"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2018-06-04T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "WebCore/platform/network/soup/SocketStreamHandleImplSoup.cpp in the libsoup network backend of WebKit, as used in WebKitGTK+ prior to version 2.20.0 or without libsoup 2.62.0, unexpectedly failed to use system proxy settings for WebSocket connections. As a result, users could be deanonymized by crafted web sites via a WebSocket connection."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-10-21T09:57:02.000Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://trac.webkit.org/changeset/228088/webkit"
        },
        {
          "name": "GLSA-201808-04",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/201808-04"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://bugs.webkit.org/show_bug.cgi?id=126384"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2018-11713",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "WebCore/platform/network/soup/SocketStreamHandleImplSoup.cpp in the libsoup network backend of WebKit, as used in WebKitGTK+ prior to version 2.20.0 or without libsoup 2.62.0, unexpectedly failed to use system proxy settings for WebSocket connections. As a result, users could be deanonymized by crafted web sites via a WebSocket connection."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://trac.webkit.org/changeset/228088/webkit",
              "refsource": "MISC",
              "url": "https://trac.webkit.org/changeset/228088/webkit"
            },
            {
              "name": "GLSA-201808-04",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/201808-04"
            },
            {
              "name": "https://bugs.webkit.org/show_bug.cgi?id=126384",
              "refsource": "MISC",
              "url": "https://bugs.webkit.org/show_bug.cgi?id=126384"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2018-11713",
    "datePublished": "2018-06-04T14:00:00.000Z",
    "dateReserved": "2018-06-04T00:00:00.000Z",
    "dateUpdated": "2024-08-05T08:17:08.955Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-4209 (GCVE-0-2018-4209)

Vulnerability from cvelistv5 – Published: 2019-01-11 18:00 – Updated: 2024-08-05 05:04

Summary

In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. This issue was addressed with improved checks.

Severity ?

No CVSS data available.

CWE

n/a

Assigner

apple

References

URL

Tags

	https://support.apple.com/HT208695%2C	x_refsource_MISC
	https://support.apple.com/HT208697%2C	x_refsource_MISC
	https://support.apple.com/HT208696%2C	x_refsource_MISC
	https://usn.ubuntu.com/3781-1/	vendor-advisoryx_refsource_UBUNTU
	https://support.apple.com/HT208698%2C	x_refsource_MISC
	https://security.gentoo.org/glsa/201812-04	vendor-advisoryx_refsource_GENTOO
	https://support.apple.com/HT208694	x_refsource_CONFIRM
	https://support.apple.com/HT208693%2C	x_refsource_MISC

Date Public ?

2019-01-11 00:00

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:04:29.908Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208695%2C"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208697%2C"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208696%2C"
          },
          {
            "name": "USN-3781-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3781-1/"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208698%2C"
          },
          {
            "name": "GLSA-201812-04",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/201812-04"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208694"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208693%2C"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2019-01-11T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. This issue was addressed with improved checks."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-01-12T10:57:01.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/HT208695%2C"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/HT208697%2C"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/HT208696%2C"
        },
        {
          "name": "USN-3781-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3781-1/"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/HT208698%2C"
        },
        {
          "name": "GLSA-201812-04",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/201812-04"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.apple.com/HT208694"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/HT208693%2C"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4209",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. This issue was addressed with improved checks."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/HT208695,",
              "refsource": "MISC",
              "url": "https://support.apple.com/HT208695,"
            },
            {
              "name": "https://support.apple.com/HT208697,",
              "refsource": "MISC",
              "url": "https://support.apple.com/HT208697,"
            },
            {
              "name": "https://support.apple.com/HT208696,",
              "refsource": "MISC",
              "url": "https://support.apple.com/HT208696,"
            },
            {
              "name": "USN-3781-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/3781-1/"
            },
            {
              "name": "https://support.apple.com/HT208698,",
              "refsource": "MISC",
              "url": "https://support.apple.com/HT208698,"
            },
            {
              "name": "GLSA-201812-04",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/201812-04"
            },
            {
              "name": "https://support.apple.com/HT208694",
              "refsource": "CONFIRM",
              "url": "https://support.apple.com/HT208694"
            },
            {
              "name": "https://support.apple.com/HT208693,",
              "refsource": "MISC",
              "url": "https://support.apple.com/HT208693,"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4209",
    "datePublished": "2019-01-11T18:00:00.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:04:29.908Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-4372 (GCVE-0-2018-4372)

Vulnerability from cvelistv5 – Published: 2019-04-03 17:43 – Updated: 2024-08-05 05:11

Summary

Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.

Severity ?

No CVSS data available.

CWE

Processing maliciously crafted web content may lead to arbitrary code execution

Assigner

apple

References

URL

Tags

	https://support.apple.com/kb/HT209192	x_refsource_MISC
	https://support.apple.com/kb/HT209195	x_refsource_MISC
	https://support.apple.com/kb/HT209194	x_refsource_MISC
	https://support.apple.com/kb/HT209197	x_refsource_MISC
	https://support.apple.com/kb/HT209198	x_refsource_MISC
	https://support.apple.com/kb/HT209196	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	iOS, tvOS, watchOS, Safari, iTunes for Windows, iCloud for Windows	Affected: Versions prior to: iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:11:22.664Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209192"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209195"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209194"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209197"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209198"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209196"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS, tvOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Versions prior to: iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Processing maliciously crafted web content may lead to arbitrary code execution",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-04-03T17:43:16.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209192"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209195"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209194"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209197"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209198"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209196"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4372",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "iOS, tvOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions prior to: iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Processing maliciously crafted web content may lead to arbitrary code execution"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/kb/HT209192",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209192"
            },
            {
              "name": "https://support.apple.com/kb/HT209195",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209195"
            },
            {
              "name": "https://support.apple.com/kb/HT209194",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209194"
            },
            {
              "name": "https://support.apple.com/kb/HT209197",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209197"
            },
            {
              "name": "https://support.apple.com/kb/HT209198",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209198"
            },
            {
              "name": "https://support.apple.com/kb/HT209196",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209196"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4372",
    "datePublished": "2019-04-03T17:43:16.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:11:22.664Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-4162 (GCVE-0-2018-4162)

Vulnerability from cvelistv5 – Published: 2018-04-03 06:00 – Updated: 2024-08-05 05:04

Summary

An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. watchOS before 4.3 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.

Severity ?

No CVSS data available.

CWE

n/a

Assigner

apple

References

URL

Tags

	http://www.securitytracker.com/id/1040604	vdb-entryx_refsource_SECTRACK
	https://support.apple.com/HT208698	x_refsource_CONFIRM
	https://security.gentoo.org/glsa/201808-04	vendor-advisoryx_refsource_GENTOO
	https://support.apple.com/HT208696	x_refsource_CONFIRM
	https://support.apple.com/HT208693	x_refsource_CONFIRM
	https://support.apple.com/HT208694	x_refsource_CONFIRM
	https://support.apple.com/HT208697	x_refsource_CONFIRM
	https://usn.ubuntu.com/3635-1/	vendor-advisoryx_refsource_UBUNTU
	https://support.apple.com/HT208695	x_refsource_CONFIRM
	http://packetstormsecurity.com/files/158874/Safar…	x_refsource_MISC

Date Public ?

2018-03-29 00:00

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:04:29.955Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "1040604",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1040604"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208698"
          },
          {
            "name": "GLSA-201808-04",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/201808-04"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208696"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208693"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208694"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208697"
          },
          {
            "name": "USN-3635-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3635-1/"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208695"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/158874/Safari-Webkit-For-iOS-7.1.2-JIT-Optimization-Bug.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2018-03-29T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. watchOS before 4.3 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-08-14T22:06:11.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "name": "1040604",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1040604"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.apple.com/HT208698"
        },
        {
          "name": "GLSA-201808-04",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/201808-04"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.apple.com/HT208696"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.apple.com/HT208693"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.apple.com/HT208694"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.apple.com/HT208697"
        },
        {
          "name": "USN-3635-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3635-1/"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.apple.com/HT208695"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://packetstormsecurity.com/files/158874/Safari-Webkit-For-iOS-7.1.2-JIT-Optimization-Bug.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4162",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. watchOS before 4.3 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "1040604",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1040604"
            },
            {
              "name": "https://support.apple.com/HT208698",
              "refsource": "CONFIRM",
              "url": "https://support.apple.com/HT208698"
            },
            {
              "name": "GLSA-201808-04",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/201808-04"
            },
            {
              "name": "https://support.apple.com/HT208696",
              "refsource": "CONFIRM",
              "url": "https://support.apple.com/HT208696"
            },
            {
              "name": "https://support.apple.com/HT208693",
              "refsource": "CONFIRM",
              "url": "https://support.apple.com/HT208693"
            },
            {
              "name": "https://support.apple.com/HT208694",
              "refsource": "CONFIRM",
              "url": "https://support.apple.com/HT208694"
            },
            {
              "name": "https://support.apple.com/HT208697",
              "refsource": "CONFIRM",
              "url": "https://support.apple.com/HT208697"
            },
            {
              "name": "USN-3635-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/3635-1/"
            },
            {
              "name": "https://support.apple.com/HT208695",
              "refsource": "CONFIRM",
              "url": "https://support.apple.com/HT208695"
            },
            {
              "name": "http://packetstormsecurity.com/files/158874/Safari-Webkit-For-iOS-7.1.2-JIT-Optimization-Bug.html",
              "refsource": "MISC",
              "url": "http://packetstormsecurity.com/files/158874/Safari-Webkit-For-iOS-7.1.2-JIT-Optimization-Bug.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4162",
    "datePublished": "2018-04-03T06:00:00.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:04:29.955Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-4464 (GCVE-0-2018-4464)

Vulnerability from cvelistv5 – Published: 2019-04-03 17:43 – Updated: 2024-08-05 05:18

Summary

Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9.

Severity ?

No CVSS data available.

CWE

Processing maliciously crafted web content may lead to arbitrary code execution

Assigner

apple

References

URL

Tags

	https://support.apple.com/kb/HT209343	x_refsource_MISC
	https://support.apple.com/kb/HT209342	x_refsource_MISC
	https://support.apple.com/kb/HT209340	x_refsource_MISC
	https://support.apple.com/kb/HT209344	x_refsource_MISC
	https://support.apple.com/kb/HT209346	x_refsource_MISC
	https://support.apple.com/kb/HT209345	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	iOS, tvOS, watchOS, Safari, iTunes for Windows, iCloud for Windows	Affected: Versions prior to: iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:18:26.625Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209343"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209342"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209340"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209344"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209346"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209345"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS, tvOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Versions prior to: iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Processing maliciously crafted web content may lead to arbitrary code execution",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-04-03T17:43:19.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209343"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209342"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209340"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209344"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209346"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209345"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4464",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "iOS, tvOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions prior to: iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Processing maliciously crafted web content may lead to arbitrary code execution"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/kb/HT209343",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209343"
            },
            {
              "name": "https://support.apple.com/kb/HT209342",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209342"
            },
            {
              "name": "https://support.apple.com/kb/HT209340",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209340"
            },
            {
              "name": "https://support.apple.com/kb/HT209344",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209344"
            },
            {
              "name": "https://support.apple.com/kb/HT209346",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209346"
            },
            {
              "name": "https://support.apple.com/kb/HT209345",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209345"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4464",
    "datePublished": "2019-04-03T17:43:19.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:18:26.625Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-4306 (GCVE-0-2018-4306)

Vulnerability from cvelistv5 – Published: 2019-04-03 17:43 – Updated: 2024-08-05 05:11

Summary

A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.

Severity ?

No CVSS data available.

CWE

Processing maliciously crafted web content may lead to arbitrary code execution

Assigner

apple

References

URL

Tags

	https://support.apple.com/kb/HT209141	x_refsource_MISC
	https://support.apple.com/kb/HT209140	x_refsource_MISC
	https://support.apple.com/kb/HT209107	x_refsource_MISC
	https://support.apple.com/kb/HT209106	x_refsource_MISC
	https://support.apple.com/kb/HT209109	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	iOS, tvOS, Safari, iTunes for Windows, iCloud for Windows	Affected: Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:11:22.383Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209141"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209140"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209107"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209106"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209109"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS, tvOS, Safari,  iTunes for Windows, iCloud for Windows",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Processing maliciously crafted web content may lead to arbitrary code execution",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-04-03T17:43:14.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209141"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209140"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209107"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209106"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209109"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4306",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "iOS, tvOS, Safari,  iTunes for Windows, iCloud for Windows",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Processing maliciously crafted web content may lead to arbitrary code execution"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/kb/HT209141",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209141"
            },
            {
              "name": "https://support.apple.com/kb/HT209140",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209140"
            },
            {
              "name": "https://support.apple.com/kb/HT209107",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209107"
            },
            {
              "name": "https://support.apple.com/kb/HT209106",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209106"
            },
            {
              "name": "https://support.apple.com/kb/HT209109",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209109"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4306",
    "datePublished": "2019-04-03T17:43:14.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:11:22.383Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-4309 (GCVE-0-2018-4309)

Vulnerability from cvelistv5 – Published: 2019-04-03 17:43 – Updated: 2024-08-05 05:11

Summary

A cross-site scripting issue existed in Safari. This issue was addressed with improved URL validation. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.

Severity ?

No CVSS data available.

CWE

A malicious website may be able to execute scripts in the context of another website

Assigner

apple

References

URL

Tags

	https://support.apple.com/kb/HT209141	x_refsource_MISC
	https://support.apple.com/kb/HT209140	x_refsource_MISC
	https://support.apple.com/kb/HT209107	x_refsource_MISC
	https://support.apple.com/kb/HT209106	x_refsource_MISC
	https://support.apple.com/kb/HT209109	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	iOS, tvOS, Safari, iTunes for Windows, iCloud for Windows	Affected: Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:11:22.136Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209141"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209140"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209107"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209106"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209109"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS, tvOS, Safari,  iTunes for Windows, iCloud for Windows",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A cross-site scripting issue existed in Safari. This issue was addressed with improved URL validation. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "A malicious website may be able to execute scripts in the context of another website",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-04-03T17:43:14.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209141"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209140"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209107"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209106"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209109"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4309",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "iOS, tvOS, Safari,  iTunes for Windows, iCloud for Windows",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A cross-site scripting issue existed in Safari. This issue was addressed with improved URL validation. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "A malicious website may be able to execute scripts in the context of another website"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/kb/HT209141",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209141"
            },
            {
              "name": "https://support.apple.com/kb/HT209140",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209140"
            },
            {
              "name": "https://support.apple.com/kb/HT209107",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209107"
            },
            {
              "name": "https://support.apple.com/kb/HT209106",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209106"
            },
            {
              "name": "https://support.apple.com/kb/HT209109",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209109"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4309",
    "datePublished": "2019-04-03T17:43:14.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:11:22.136Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-4197 (GCVE-0-2018-4197)

Vulnerability from cvelistv5 – Published: 2019-04-03 17:43 – Updated: 2024-08-05 05:04

Summary

A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.

Severity ?

No CVSS data available.

CWE

Processing maliciously crafted web content may lead to arbitrary code execution

Assigner

apple

References

URL

Tags

	https://support.apple.com/kb/HT209141	x_refsource_MISC
	https://support.apple.com/kb/HT209140	x_refsource_MISC
	https://support.apple.com/kb/HT209107	x_refsource_MISC
	https://support.apple.com/kb/HT209106	x_refsource_MISC
	https://support.apple.com/kb/HT209109	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	iOS, tvOS, Safari, iTunes for Windows, iCloud for Windows	Affected: Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:04:29.970Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209141"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209140"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209107"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209106"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209109"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS, tvOS, Safari,  iTunes for Windows, iCloud for Windows",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Processing maliciously crafted web content may lead to arbitrary code execution",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-04-03T17:43:12.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209141"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209140"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209107"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209106"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209109"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4197",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "iOS, tvOS, Safari,  iTunes for Windows, iCloud for Windows",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Processing maliciously crafted web content may lead to arbitrary code execution"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/kb/HT209141",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209141"
            },
            {
              "name": "https://support.apple.com/kb/HT209140",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209140"
            },
            {
              "name": "https://support.apple.com/kb/HT209107",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209107"
            },
            {
              "name": "https://support.apple.com/kb/HT209106",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209106"
            },
            {
              "name": "https://support.apple.com/kb/HT209109",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209109"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4197",
    "datePublished": "2019-04-03T17:43:12.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:04:29.970Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-4328 (GCVE-0-2018-4328)

Vulnerability from cvelistv5 – Published: 2019-04-03 17:43 – Updated: 2024-08-05 05:11

Summary

Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.

Severity ?

No CVSS data available.

CWE

Processing maliciously crafted web content may lead to arbitrary code execution

Assigner

apple

References

URL

Tags

	https://support.apple.com/kb/HT209141	x_refsource_MISC
	https://support.apple.com/kb/HT209140	x_refsource_MISC
	https://support.apple.com/kb/HT209107	x_refsource_MISC
	https://support.apple.com/kb/HT209106	x_refsource_MISC
	https://support.apple.com/kb/HT209109	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	iOS, tvOS, Safari, iTunes for Windows, iCloud for Windows	Affected: Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:11:22.666Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209141"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209140"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209107"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209106"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209109"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS, tvOS, Safari,  iTunes for Windows, iCloud for Windows",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Processing maliciously crafted web content may lead to arbitrary code execution",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-04-03T17:43:15.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209141"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209140"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209107"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209106"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209109"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4328",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "iOS, tvOS, Safari,  iTunes for Windows, iCloud for Windows",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Processing maliciously crafted web content may lead to arbitrary code execution"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/kb/HT209141",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209141"
            },
            {
              "name": "https://support.apple.com/kb/HT209140",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209140"
            },
            {
              "name": "https://support.apple.com/kb/HT209107",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209107"
            },
            {
              "name": "https://support.apple.com/kb/HT209106",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209106"
            },
            {
              "name": "https://support.apple.com/kb/HT209109",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209109"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4328",
    "datePublished": "2019-04-03T17:43:15.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:11:22.666Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-4382 (GCVE-0-2018-4382)

Vulnerability from cvelistv5 – Published: 2019-04-03 17:43 – Updated: 2024-08-05 05:11

Summary

Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.

Severity ?

No CVSS data available.

CWE

Processing maliciously crafted web content may lead to arbitrary code execution

Assigner

apple

References

URL

Tags

	https://support.apple.com/kb/HT209192	x_refsource_MISC
	https://support.apple.com/kb/HT209195	x_refsource_MISC
	https://support.apple.com/kb/HT209194	x_refsource_MISC
	https://support.apple.com/kb/HT209197	x_refsource_MISC
	https://support.apple.com/kb/HT209198	x_refsource_MISC
	https://support.apple.com/kb/HT209196	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	iOS, tvOS, watchOS, Safari, iTunes for Windows, iCloud for Windows	Affected: Versions prior to: iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:11:22.778Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209192"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209195"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209194"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209197"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209198"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209196"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS, tvOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Versions prior to: iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Processing maliciously crafted web content may lead to arbitrary code execution",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-04-03T17:43:17.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209192"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209195"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209194"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209197"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209198"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209196"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4382",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "iOS, tvOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions prior to: iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Processing maliciously crafted web content may lead to arbitrary code execution"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/kb/HT209192",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209192"
            },
            {
              "name": "https://support.apple.com/kb/HT209195",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209195"
            },
            {
              "name": "https://support.apple.com/kb/HT209194",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209194"
            },
            {
              "name": "https://support.apple.com/kb/HT209197",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209197"
            },
            {
              "name": "https://support.apple.com/kb/HT209198",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209198"
            },
            {
              "name": "https://support.apple.com/kb/HT209196",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209196"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4382",
    "datePublished": "2019-04-03T17:43:17.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:11:22.778Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-4299 (GCVE-0-2018-4299)

Vulnerability from cvelistv5 – Published: 2019-04-03 17:43 – Updated: 2024-08-05 05:11

Summary

Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.

Severity ?

No CVSS data available.

CWE

Processing maliciously crafted web content may lead to arbitrary code execution

Assigner

apple

References

URL

Tags

	https://support.apple.com/kb/HT209141	x_refsource_MISC
	https://support.apple.com/kb/HT209140	x_refsource_MISC
	https://support.apple.com/kb/HT209107	x_refsource_MISC
	https://support.apple.com/kb/HT209106	x_refsource_MISC
	https://support.apple.com/kb/HT209108	x_refsource_MISC
	https://support.apple.com/kb/HT209109	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	iOS, tvOS, watchOS, Safari, iTunes for Windows, iCloud for Windows	Affected: Versions prior to: iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:11:22.411Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209141"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209140"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209107"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209106"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209108"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209109"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS, tvOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Versions prior to: iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Processing maliciously crafted web content may lead to arbitrary code execution",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-04-03T17:43:14.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209141"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209140"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209107"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209106"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209108"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209109"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4299",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "iOS, tvOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions prior to: iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Processing maliciously crafted web content may lead to arbitrary code execution"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/kb/HT209141",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209141"
            },
            {
              "name": "https://support.apple.com/kb/HT209140",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209140"
            },
            {
              "name": "https://support.apple.com/kb/HT209107",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209107"
            },
            {
              "name": "https://support.apple.com/kb/HT209106",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209106"
            },
            {
              "name": "https://support.apple.com/kb/HT209108",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209108"
            },
            {
              "name": "https://support.apple.com/kb/HT209109",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209109"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4299",
    "datePublished": "2019-04-03T17:43:14.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:11:22.411Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-4207 (GCVE-0-2018-4207)

Vulnerability from cvelistv5 – Published: 2019-01-11 18:00 – Updated: 2024-08-05 05:04

Summary

In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. This issue was addressed with improved checks.

Severity ?

No CVSS data available.

CWE

n/a

Assigner

apple

References

URL

Tags

	https://support.apple.com/HT208695%2C	x_refsource_MISC
	https://support.apple.com/HT208697%2C	x_refsource_MISC
	https://support.apple.com/HT208696%2C	x_refsource_MISC
	https://usn.ubuntu.com/3781-1/	vendor-advisoryx_refsource_UBUNTU
	https://support.apple.com/HT208698%2C	x_refsource_MISC
	https://security.gentoo.org/glsa/201812-04	vendor-advisoryx_refsource_GENTOO
	https://support.apple.com/HT208694	x_refsource_CONFIRM
	https://support.apple.com/HT208693%2C	x_refsource_MISC

Date Public ?

2019-01-11 00:00

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:04:29.921Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208695%2C"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208697%2C"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208696%2C"
          },
          {
            "name": "USN-3781-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3781-1/"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208698%2C"
          },
          {
            "name": "GLSA-201812-04",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/201812-04"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208694"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208693%2C"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2019-01-11T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. This issue was addressed with improved checks."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-01-12T10:57:01.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/HT208695%2C"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/HT208697%2C"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/HT208696%2C"
        },
        {
          "name": "USN-3781-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3781-1/"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/HT208698%2C"
        },
        {
          "name": "GLSA-201812-04",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/201812-04"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.apple.com/HT208694"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/HT208693%2C"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4207",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. This issue was addressed with improved checks."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/HT208695,",
              "refsource": "MISC",
              "url": "https://support.apple.com/HT208695,"
            },
            {
              "name": "https://support.apple.com/HT208697,",
              "refsource": "MISC",
              "url": "https://support.apple.com/HT208697,"
            },
            {
              "name": "https://support.apple.com/HT208696,",
              "refsource": "MISC",
              "url": "https://support.apple.com/HT208696,"
            },
            {
              "name": "USN-3781-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/3781-1/"
            },
            {
              "name": "https://support.apple.com/HT208698,",
              "refsource": "MISC",
              "url": "https://support.apple.com/HT208698,"
            },
            {
              "name": "GLSA-201812-04",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/201812-04"
            },
            {
              "name": "https://support.apple.com/HT208694",
              "refsource": "CONFIRM",
              "url": "https://support.apple.com/HT208694"
            },
            {
              "name": "https://support.apple.com/HT208693,",
              "refsource": "MISC",
              "url": "https://support.apple.com/HT208693,"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4207",
    "datePublished": "2019-01-11T18:00:00.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:04:29.921Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-4442 (GCVE-0-2018-4442)

Vulnerability from cvelistv5 – Published: 2019-04-03 17:43 – Updated: 2024-08-05 05:18

Summary

A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9.

Severity ?

No CVSS data available.

CWE

Processing maliciously crafted web content may lead to arbitrary code execution

Assigner

apple

References

URL

Tags

	https://support.apple.com/kb/HT209343	x_refsource_MISC
	https://support.apple.com/kb/HT209342	x_refsource_MISC
	https://support.apple.com/kb/HT209340	x_refsource_MISC
	https://support.apple.com/kb/HT209344	x_refsource_MISC
	https://support.apple.com/kb/HT209346	x_refsource_MISC
	https://support.apple.com/kb/HT209345	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	iOS, tvOS, watchOS, Safari, iTunes for Windows, iCloud for Windows	Affected: Versions prior to: iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:18:25.524Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209343"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209342"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209340"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209344"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209346"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209345"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS, tvOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Versions prior to: iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Processing maliciously crafted web content may lead to arbitrary code execution",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-04-03T17:43:19.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209343"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209342"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209340"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209344"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209346"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209345"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4442",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "iOS, tvOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions prior to: iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Processing maliciously crafted web content may lead to arbitrary code execution"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/kb/HT209343",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209343"
            },
            {
              "name": "https://support.apple.com/kb/HT209342",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209342"
            },
            {
              "name": "https://support.apple.com/kb/HT209340",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209340"
            },
            {
              "name": "https://support.apple.com/kb/HT209344",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209344"
            },
            {
              "name": "https://support.apple.com/kb/HT209346",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209346"
            },
            {
              "name": "https://support.apple.com/kb/HT209345",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209345"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4442",
    "datePublished": "2019-04-03T17:43:19.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:18:25.524Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-4359 (GCVE-0-2018-4359)

Vulnerability from cvelistv5 – Published: 2019-04-03 17:43 – Updated: 2024-08-05 05:11

Summary

Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.

Severity ?

No CVSS data available.

CWE

Processing maliciously crafted web content may lead to arbitrary code execution

Assigner

apple

References

URL

Tags

	https://support.apple.com/kb/HT209141	x_refsource_MISC
	https://support.apple.com/kb/HT209140	x_refsource_MISC
	https://support.apple.com/kb/HT209107	x_refsource_MISC
	https://support.apple.com/kb/HT209106	x_refsource_MISC
	https://support.apple.com/kb/HT209108	x_refsource_MISC
	https://support.apple.com/kb/HT209109	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	iOS, tvOS, watchOS, Safari, iTunes for Windows, iCloud for Windows	Affected: Versions prior to: iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:11:22.876Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209141"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209140"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209107"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209106"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209108"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209109"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS, tvOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Versions prior to: iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Processing maliciously crafted web content may lead to arbitrary code execution",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-04-03T17:43:16.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209141"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209140"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209107"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209106"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209108"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209109"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4359",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "iOS, tvOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions prior to: iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Processing maliciously crafted web content may lead to arbitrary code execution"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/kb/HT209141",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209141"
            },
            {
              "name": "https://support.apple.com/kb/HT209140",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209140"
            },
            {
              "name": "https://support.apple.com/kb/HT209107",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209107"
            },
            {
              "name": "https://support.apple.com/kb/HT209106",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209106"
            },
            {
              "name": "https://support.apple.com/kb/HT209108",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209108"
            },
            {
              "name": "https://support.apple.com/kb/HT209109",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209109"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4359",
    "datePublished": "2019-04-03T17:43:16.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:11:22.876Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-4314 (GCVE-0-2018-4314)

Vulnerability from cvelistv5 – Published: 2019-04-03 17:43 – Updated: 2024-08-05 05:11

Summary

A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.

Severity ?

No CVSS data available.

CWE

Processing maliciously crafted web content may lead to arbitrary code execution

Assigner

apple

References

URL

Tags

	https://support.apple.com/kb/HT209141	x_refsource_MISC
	https://support.apple.com/kb/HT209140	x_refsource_MISC
	https://support.apple.com/kb/HT209107	x_refsource_MISC
	https://support.apple.com/kb/HT209106	x_refsource_MISC
	https://support.apple.com/kb/HT209109	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	iOS, tvOS, Safari, iTunes for Windows, iCloud for Windows	Affected: Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:11:22.507Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209141"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209140"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209107"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209106"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209109"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS, tvOS, Safari,  iTunes for Windows, iCloud for Windows",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Processing maliciously crafted web content may lead to arbitrary code execution",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-04-03T17:43:14.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209141"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209140"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209107"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209106"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209109"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4314",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "iOS, tvOS, Safari,  iTunes for Windows, iCloud for Windows",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Processing maliciously crafted web content may lead to arbitrary code execution"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/kb/HT209141",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209141"
            },
            {
              "name": "https://support.apple.com/kb/HT209140",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209140"
            },
            {
              "name": "https://support.apple.com/kb/HT209107",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209107"
            },
            {
              "name": "https://support.apple.com/kb/HT209106",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209106"
            },
            {
              "name": "https://support.apple.com/kb/HT209109",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209109"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4314",
    "datePublished": "2019-04-03T17:43:14.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:11:22.507Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-4361 (GCVE-0-2018-4361)

Vulnerability from cvelistv5 – Published: 2019-04-03 17:43 – Updated: 2024-08-05 05:11

Summary

A memory consumption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.

Severity ?

No CVSS data available.

CWE

Unexpected interaction causes an ASSERT failure

Assigner

apple

References

URL

Tags

	https://support.apple.com/HT209106	x_refsource_MISC
	https://support.apple.com/HT209107	x_refsource_MISC
	https://support.apple.com/HT209108	x_refsource_MISC
	https://support.apple.com/HT209109	x_refsource_MISC
	https://support.apple.com/HT209140	x_refsource_MISC
	https://support.apple.com/HT209141	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	iOS, tvOS, watchOS, Safari, iTunes for Windows, iCloud for Windows	Affected: Versions prior to: iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:11:22.659Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT209106"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT209107"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT209108"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT209109"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT209140"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT209141"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS, tvOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Versions prior to: iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A memory consumption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Unexpected interaction causes an ASSERT failure",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-04-03T17:43:16.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/HT209106"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/HT209107"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/HT209108"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/HT209109"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/HT209140"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/HT209141"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4361",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "iOS, tvOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions prior to: iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A memory consumption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Unexpected interaction causes an ASSERT failure"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/HT209106",
              "refsource": "MISC",
              "url": "https://support.apple.com/HT209106"
            },
            {
              "name": "https://support.apple.com/HT209107",
              "refsource": "MISC",
              "url": "https://support.apple.com/HT209107"
            },
            {
              "name": "https://support.apple.com/HT209108",
              "refsource": "MISC",
              "url": "https://support.apple.com/HT209108"
            },
            {
              "name": "https://support.apple.com/HT209109",
              "refsource": "MISC",
              "url": "https://support.apple.com/HT209109"
            },
            {
              "name": "https://support.apple.com/HT209140",
              "refsource": "MISC",
              "url": "https://support.apple.com/HT209140"
            },
            {
              "name": "https://support.apple.com/HT209141",
              "refsource": "MISC",
              "url": "https://support.apple.com/HT209141"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4361",
    "datePublished": "2019-04-03T17:43:16.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:11:22.659Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-4208 (GCVE-0-2018-4208)

Vulnerability from cvelistv5 – Published: 2019-01-11 18:00 – Updated: 2024-08-05 05:04

Summary

In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. This issue was addressed with improved checks.

Severity ?

No CVSS data available.

CWE

n/a

Assigner

apple

References

URL

Tags

	https://support.apple.com/HT208695%2C	x_refsource_MISC
	https://support.apple.com/HT208694%2C	x_refsource_MISC
	https://support.apple.com/HT208697%2C	x_refsource_MISC
	https://support.apple.com/HT208696	x_refsource_CONFIRM
	https://usn.ubuntu.com/3781-1/	vendor-advisoryx_refsource_UBUNTU
	https://support.apple.com/HT208698%2C	x_refsource_MISC
	https://security.gentoo.org/glsa/201812-04	vendor-advisoryx_refsource_GENTOO
	https://support.apple.com/HT208693%2C	x_refsource_MISC

Date Public ?

2019-01-11 00:00

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:04:29.864Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208695%2C"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208694%2C"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208697%2C"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208696"
          },
          {
            "name": "USN-3781-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3781-1/"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208698%2C"
          },
          {
            "name": "GLSA-201812-04",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/201812-04"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208693%2C"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2019-01-11T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. This issue was addressed with improved checks."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-01-12T10:57:01.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/HT208695%2C"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/HT208694%2C"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/HT208697%2C"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.apple.com/HT208696"
        },
        {
          "name": "USN-3781-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3781-1/"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/HT208698%2C"
        },
        {
          "name": "GLSA-201812-04",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/201812-04"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/HT208693%2C"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4208",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. This issue was addressed with improved checks."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/HT208695,",
              "refsource": "MISC",
              "url": "https://support.apple.com/HT208695,"
            },
            {
              "name": "https://support.apple.com/HT208694,",
              "refsource": "MISC",
              "url": "https://support.apple.com/HT208694,"
            },
            {
              "name": "https://support.apple.com/HT208697,",
              "refsource": "MISC",
              "url": "https://support.apple.com/HT208697,"
            },
            {
              "name": "https://support.apple.com/HT208696",
              "refsource": "CONFIRM",
              "url": "https://support.apple.com/HT208696"
            },
            {
              "name": "USN-3781-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/3781-1/"
            },
            {
              "name": "https://support.apple.com/HT208698,",
              "refsource": "MISC",
              "url": "https://support.apple.com/HT208698,"
            },
            {
              "name": "GLSA-201812-04",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/201812-04"
            },
            {
              "name": "https://support.apple.com/HT208693,",
              "refsource": "MISC",
              "url": "https://support.apple.com/HT208693,"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4208",
    "datePublished": "2019-01-11T18:00:00.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:04:29.864Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-4319 (GCVE-0-2018-4319)

Vulnerability from cvelistv5 – Published: 2019-04-03 17:43 – Updated: 2024-08-05 05:11

Summary

A cross-origin issue existed with "iframe" elements. This was addressed with improved tracking of security origins. This issue affected versions prior to iOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.

Severity ?

No CVSS data available.

CWE

A malicious website may cause unexepected cross-origin behavior

Assigner

apple

References

URL

Tags

	https://support.apple.com/kb/HT209141	x_refsource_MISC
	https://support.apple.com/kb/HT209140	x_refsource_MISC
	https://support.apple.com/kb/HT209106	x_refsource_MISC
	https://support.apple.com/kb/HT209108	x_refsource_MISC
	https://support.apple.com/kb/HT209109	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	iOS, watchOS, Safari, iTunes for Windows, iCloud for Windows	Affected: Versions prior to: iOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:11:22.165Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209141"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209140"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209106"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209108"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209109"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Versions prior to: iOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A cross-origin issue existed with \"iframe\" elements. This was addressed with improved tracking of security origins. This issue affected versions prior to iOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "A malicious website may cause unexepected cross-origin behavior",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-04-03T17:43:14.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209141"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209140"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209106"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209108"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209109"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4319",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "iOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions prior to: iOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A cross-origin issue existed with \"iframe\" elements. This was addressed with improved tracking of security origins. This issue affected versions prior to iOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "A malicious website may cause unexepected cross-origin behavior"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/kb/HT209141",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209141"
            },
            {
              "name": "https://support.apple.com/kb/HT209140",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209140"
            },
            {
              "name": "https://support.apple.com/kb/HT209106",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209106"
            },
            {
              "name": "https://support.apple.com/kb/HT209108",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209108"
            },
            {
              "name": "https://support.apple.com/kb/HT209109",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209109"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4319",
    "datePublished": "2019-04-03T17:43:14.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:11:22.165Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-4437 (GCVE-0-2018-4437)

Vulnerability from cvelistv5 – Published: 2019-04-03 17:43 – Updated: 2024-08-05 05:11

Summary

Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9.

Severity ?

No CVSS data available.

CWE

Processing maliciously crafted web content may lead to arbitrary code execution

Assigner

apple

References

URL

Tags

	https://support.apple.com/kb/HT209343	x_refsource_MISC
	https://support.apple.com/kb/HT209342	x_refsource_MISC
	https://support.apple.com/kb/HT209340	x_refsource_MISC
	https://support.apple.com/kb/HT209344	x_refsource_MISC
	https://support.apple.com/kb/HT209346	x_refsource_MISC
	https://support.apple.com/kb/HT209345	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	iOS, tvOS, watchOS, Safari, iTunes for Windows, iCloud for Windows	Affected: Versions prior to: iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:11:22.899Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209343"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209342"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209340"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209344"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209346"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209345"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS, tvOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Versions prior to: iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Processing maliciously crafted web content may lead to arbitrary code execution",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-04-03T17:43:18.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209343"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209342"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209340"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209344"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209346"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209345"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4437",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "iOS, tvOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions prior to: iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Processing maliciously crafted web content may lead to arbitrary code execution"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/kb/HT209343",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209343"
            },
            {
              "name": "https://support.apple.com/kb/HT209342",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209342"
            },
            {
              "name": "https://support.apple.com/kb/HT209340",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209340"
            },
            {
              "name": "https://support.apple.com/kb/HT209344",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209344"
            },
            {
              "name": "https://support.apple.com/kb/HT209346",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209346"
            },
            {
              "name": "https://support.apple.com/kb/HT209345",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209345"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4437",
    "datePublished": "2019-04-03T17:43:19.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:11:22.899Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-4441 (GCVE-0-2018-4441)

Vulnerability from cvelistv5 – Published: 2019-04-03 17:43 – Updated: 2024-08-05 05:18

Summary

A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9.

Severity ?

No CVSS data available.

CWE

Processing maliciously crafted web content may lead to arbitrary code execution

Assigner

apple

References

URL

Tags

	https://support.apple.com/kb/HT209343	x_refsource_MISC
	https://support.apple.com/kb/HT209342	x_refsource_MISC
	https://support.apple.com/kb/HT209340	x_refsource_MISC
	https://support.apple.com/kb/HT209344	x_refsource_MISC
	https://support.apple.com/kb/HT209346	x_refsource_MISC
	https://support.apple.com/kb/HT209345	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	iOS, tvOS, watchOS, Safari, iTunes for Windows, iCloud for Windows	Affected: Versions prior to: iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:18:25.521Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209343"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209342"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209340"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209344"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209346"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209345"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS, tvOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Versions prior to: iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Processing maliciously crafted web content may lead to arbitrary code execution",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-04-03T17:43:19.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209343"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209342"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209340"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209344"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209346"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209345"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4441",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "iOS, tvOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions prior to: iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Processing maliciously crafted web content may lead to arbitrary code execution"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/kb/HT209343",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209343"
            },
            {
              "name": "https://support.apple.com/kb/HT209342",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209342"
            },
            {
              "name": "https://support.apple.com/kb/HT209340",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209340"
            },
            {
              "name": "https://support.apple.com/kb/HT209344",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209344"
            },
            {
              "name": "https://support.apple.com/kb/HT209346",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209346"
            },
            {
              "name": "https://support.apple.com/kb/HT209345",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209345"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4441",
    "datePublished": "2019-04-03T17:43:19.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:18:25.521Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-4392 (GCVE-0-2018-4392)

Vulnerability from cvelistv5 – Published: 2019-04-03 17:43 – Updated: 2024-08-05 05:11

Summary

Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.

Severity ?

No CVSS data available.

CWE

Processing maliciously crafted web content may lead to arbitrary code execution

Assigner

apple

References

URL

Tags

	https://support.apple.com/kb/HT209192	x_refsource_MISC
	https://support.apple.com/kb/HT209195	x_refsource_MISC
	https://support.apple.com/kb/HT209194	x_refsource_MISC
	https://support.apple.com/kb/HT209197	x_refsource_MISC
	https://support.apple.com/kb/HT209198	x_refsource_MISC
	https://support.apple.com/kb/HT209196	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	iOS, tvOS, watchOS, Safari, iTunes for Windows, iCloud for Windows	Affected: Versions prior to: iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:11:22.679Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209192"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209195"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209194"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209197"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209198"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209196"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS, tvOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Versions prior to: iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Processing maliciously crafted web content may lead to arbitrary code execution",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-04-03T17:43:17.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209192"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209195"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209194"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209197"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209198"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209196"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4392",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "iOS, tvOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions prior to: iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Processing maliciously crafted web content may lead to arbitrary code execution"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/kb/HT209192",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209192"
            },
            {
              "name": "https://support.apple.com/kb/HT209195",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209195"
            },
            {
              "name": "https://support.apple.com/kb/HT209194",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209194"
            },
            {
              "name": "https://support.apple.com/kb/HT209197",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209197"
            },
            {
              "name": "https://support.apple.com/kb/HT209198",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209198"
            },
            {
              "name": "https://support.apple.com/kb/HT209196",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209196"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4392",
    "datePublished": "2019-04-03T17:43:17.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:11:22.679Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-4316 (GCVE-0-2018-4316)

Vulnerability from cvelistv5 – Published: 2019-04-03 17:43 – Updated: 2024-08-05 05:11

Summary

A memory corruption issue was addressed with improved state management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.

Severity ?

No CVSS data available.

CWE

Processing maliciously crafted web content may lead to arbitrary code execution

Assigner

apple

References

URL

Tags

	https://support.apple.com/kb/HT209141	x_refsource_MISC
	https://support.apple.com/kb/HT209140	x_refsource_MISC
	https://support.apple.com/kb/HT209107	x_refsource_MISC
	https://support.apple.com/kb/HT209106	x_refsource_MISC
	https://support.apple.com/kb/HT209109	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	iOS, tvOS, Safari, iTunes for Windows, iCloud for Windows	Affected: Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:11:22.474Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209141"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209140"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209107"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209106"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209109"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS, tvOS, Safari,  iTunes for Windows, iCloud for Windows",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A memory corruption issue was addressed with improved state management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Processing maliciously crafted web content may lead to arbitrary code execution",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-04-03T17:43:14.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209141"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209140"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209107"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209106"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209109"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4316",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "iOS, tvOS, Safari,  iTunes for Windows, iCloud for Windows",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A memory corruption issue was addressed with improved state management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Processing maliciously crafted web content may lead to arbitrary code execution"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/kb/HT209141",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209141"
            },
            {
              "name": "https://support.apple.com/kb/HT209140",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209140"
            },
            {
              "name": "https://support.apple.com/kb/HT209107",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209107"
            },
            {
              "name": "https://support.apple.com/kb/HT209106",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209106"
            },
            {
              "name": "https://support.apple.com/kb/HT209109",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209109"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4316",
    "datePublished": "2019-04-03T17:43:14.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:11:22.474Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-4358 (GCVE-0-2018-4358)

Vulnerability from cvelistv5 – Published: 2019-04-03 17:43 – Updated: 2024-08-05 05:11

Summary

Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.

Severity ?

No CVSS data available.

CWE

Processing maliciously crafted web content may lead to arbitrary code execution

Assigner

apple

References

URL

Tags

	https://support.apple.com/kb/HT209141	x_refsource_MISC
	https://support.apple.com/kb/HT209140	x_refsource_MISC
	https://support.apple.com/kb/HT209107	x_refsource_MISC
	https://support.apple.com/kb/HT209106	x_refsource_MISC
	https://support.apple.com/kb/HT209108	x_refsource_MISC
	https://support.apple.com/kb/HT209109	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	iOS, tvOS, watchOS, Safari, iTunes for Windows, iCloud for Windows	Affected: Versions prior to: iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:11:22.701Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209141"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209140"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209107"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209106"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209108"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209109"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS, tvOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Versions prior to: iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Processing maliciously crafted web content may lead to arbitrary code execution",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-04-03T17:43:16.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209141"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209140"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209107"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209106"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209108"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209109"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4358",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "iOS, tvOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions prior to: iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Processing maliciously crafted web content may lead to arbitrary code execution"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/kb/HT209141",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209141"
            },
            {
              "name": "https://support.apple.com/kb/HT209140",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209140"
            },
            {
              "name": "https://support.apple.com/kb/HT209107",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209107"
            },
            {
              "name": "https://support.apple.com/kb/HT209106",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209106"
            },
            {
              "name": "https://support.apple.com/kb/HT209108",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209108"
            },
            {
              "name": "https://support.apple.com/kb/HT209109",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209109"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4358",
    "datePublished": "2019-04-03T17:43:16.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:11:22.701Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-4378 (GCVE-0-2018-4378)

Vulnerability from cvelistv5 – Published: 2019-04-03 17:43 – Updated: 2024-08-05 05:11

Summary

A memory corruption issue was addressed with improved validation. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.

Severity ?

No CVSS data available.

CWE

Processing maliciously crafted web content may lead to code execution

Assigner

apple

References

URL

Tags

	https://support.apple.com/kb/HT209192	x_refsource_MISC
	https://support.apple.com/kb/HT209195	x_refsource_MISC
	https://support.apple.com/kb/HT209194	x_refsource_MISC
	https://support.apple.com/kb/HT209197	x_refsource_MISC
	https://support.apple.com/kb/HT209198	x_refsource_MISC
	https://support.apple.com/kb/HT209196	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	iOS, tvOS, watchOS, Safari, iTunes for Windows, iCloud for Windows	Affected: Versions prior to: iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:11:22.794Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209192"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209195"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209194"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209197"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209198"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209196"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS, tvOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Versions prior to: iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A memory corruption issue was addressed with improved validation. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Processing maliciously crafted web content may lead to code execution",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-04-03T17:43:17.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209192"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209195"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209194"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209197"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209198"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209196"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4378",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "iOS, tvOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions prior to: iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A memory corruption issue was addressed with improved validation. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Processing maliciously crafted web content may lead to code execution"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/kb/HT209192",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209192"
            },
            {
              "name": "https://support.apple.com/kb/HT209195",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209195"
            },
            {
              "name": "https://support.apple.com/kb/HT209194",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209194"
            },
            {
              "name": "https://support.apple.com/kb/HT209197",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209197"
            },
            {
              "name": "https://support.apple.com/kb/HT209198",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209198"
            },
            {
              "name": "https://support.apple.com/kb/HT209196",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209196"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4378",
    "datePublished": "2019-04-03T17:43:17.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:11:22.794Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-4375 (GCVE-0-2018-4375)

Vulnerability from cvelistv5 – Published: 2019-04-03 17:43 – Updated: 2024-08-05 05:11

Summary

Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.

Severity ?

No CVSS data available.

CWE

Processing maliciously crafted web content may lead to arbitrary code execution

Assigner

apple

References

URL

Tags

	https://support.apple.com/kb/HT209192	x_refsource_MISC
	https://support.apple.com/kb/HT209195	x_refsource_MISC
	https://support.apple.com/kb/HT209197	x_refsource_MISC
	https://support.apple.com/kb/HT209198	x_refsource_MISC
	https://support.apple.com/kb/HT209196	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	iOS, watchOS, Safari, iTunes for Windows, iCloud for Windows	Affected: Versions prior to: iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:11:22.836Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209192"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209195"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209197"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209198"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209196"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Versions prior to: iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Processing maliciously crafted web content may lead to arbitrary code execution",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-04-03T17:43:16.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209192"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209195"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209197"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209198"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209196"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4375",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "iOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions prior to: iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Processing maliciously crafted web content may lead to arbitrary code execution"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/kb/HT209192",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209192"
            },
            {
              "name": "https://support.apple.com/kb/HT209195",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209195"
            },
            {
              "name": "https://support.apple.com/kb/HT209197",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209197"
            },
            {
              "name": "https://support.apple.com/kb/HT209198",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209198"
            },
            {
              "name": "https://support.apple.com/kb/HT209196",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209196"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4375",
    "datePublished": "2019-04-03T17:43:16.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:11:22.836Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-4416 (GCVE-0-2018-4416)

Vulnerability from cvelistv5 – Published: 2019-04-03 17:43 – Updated: 2024-08-05 05:11

Summary

Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.

Severity ?

No CVSS data available.

CWE

Processing maliciously crafted web content may lead to arbitrary code execution

Assigner

apple

References

URL

Tags

	https://support.apple.com/kb/HT209192	x_refsource_MISC
	https://support.apple.com/kb/HT209195	x_refsource_MISC
	https://support.apple.com/kb/HT209194	x_refsource_MISC
	https://support.apple.com/kb/HT209197	x_refsource_MISC
	https://support.apple.com/kb/HT209198	x_refsource_MISC
	https://support.apple.com/kb/HT209196	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	iOS, tvOS, watchOS, Safari, iTunes for Windows, iCloud for Windows	Affected: Versions prior to: iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:11:22.882Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209192"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209195"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209194"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209197"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209198"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209196"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS, tvOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Versions prior to: iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Processing maliciously crafted web content may lead to arbitrary code execution",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-04-03T17:43:18.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209192"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209195"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209194"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209197"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209198"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209196"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4416",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "iOS, tvOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions prior to: iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Processing maliciously crafted web content may lead to arbitrary code execution"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/kb/HT209192",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209192"
            },
            {
              "name": "https://support.apple.com/kb/HT209195",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209195"
            },
            {
              "name": "https://support.apple.com/kb/HT209194",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209194"
            },
            {
              "name": "https://support.apple.com/kb/HT209197",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209197"
            },
            {
              "name": "https://support.apple.com/kb/HT209198",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209198"
            },
            {
              "name": "https://support.apple.com/kb/HT209196",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209196"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4416",
    "datePublished": "2019-04-03T17:43:18.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:11:22.882Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-4317 (GCVE-0-2018-4317)

Vulnerability from cvelistv5 – Published: 2019-04-03 17:43 – Updated: 2024-08-05 05:11

Summary

A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.

Severity ?

No CVSS data available.

CWE

Processing maliciously crafted web content may lead to arbitrary code execution

Assigner

apple

References

URL

Tags

	https://support.apple.com/kb/HT209141	x_refsource_MISC
	https://support.apple.com/kb/HT209140	x_refsource_MISC
	https://support.apple.com/kb/HT209107	x_refsource_MISC
	https://support.apple.com/kb/HT209106	x_refsource_MISC
	https://support.apple.com/kb/HT209109	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	iOS, tvOS, Safari, iTunes for Windows, iCloud for Windows	Affected: Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:11:22.418Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209141"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209140"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209107"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209106"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209109"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS, tvOS, Safari,  iTunes for Windows, iCloud for Windows",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Processing maliciously crafted web content may lead to arbitrary code execution",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-04-03T17:43:14.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209141"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209140"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209107"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209106"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209109"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4317",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "iOS, tvOS, Safari,  iTunes for Windows, iCloud for Windows",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Processing maliciously crafted web content may lead to arbitrary code execution"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/kb/HT209141",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209141"
            },
            {
              "name": "https://support.apple.com/kb/HT209140",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209140"
            },
            {
              "name": "https://support.apple.com/kb/HT209107",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209107"
            },
            {
              "name": "https://support.apple.com/kb/HT209106",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209106"
            },
            {
              "name": "https://support.apple.com/kb/HT209109",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209109"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4317",
    "datePublished": "2019-04-03T17:43:14.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:11:22.418Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-4318 (GCVE-0-2018-4318)

Vulnerability from cvelistv5 – Published: 2019-04-03 17:43 – Updated: 2024-08-05 05:11

Summary

A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.

Severity ?

No CVSS data available.

CWE

Processing maliciously crafted web content may lead to arbitrary code execution

Assigner

apple

References

URL

Tags

	https://support.apple.com/kb/HT209141	x_refsource_MISC
	https://support.apple.com/kb/HT209140	x_refsource_MISC
	https://support.apple.com/kb/HT209107	x_refsource_MISC
	https://support.apple.com/kb/HT209106	x_refsource_MISC
	https://support.apple.com/kb/HT209109	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	iOS, tvOS, Safari, iTunes for Windows, iCloud for Windows	Affected: Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:11:22.597Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209141"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209140"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209107"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209106"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209109"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS, tvOS, Safari,  iTunes for Windows, iCloud for Windows",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Processing maliciously crafted web content may lead to arbitrary code execution",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-04-03T17:43:14.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209141"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209140"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209107"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209106"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209109"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4318",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "iOS, tvOS, Safari,  iTunes for Windows, iCloud for Windows",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Processing maliciously crafted web content may lead to arbitrary code execution"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/kb/HT209141",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209141"
            },
            {
              "name": "https://support.apple.com/kb/HT209140",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209140"
            },
            {
              "name": "https://support.apple.com/kb/HT209107",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209107"
            },
            {
              "name": "https://support.apple.com/kb/HT209106",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209106"
            },
            {
              "name": "https://support.apple.com/kb/HT209109",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209109"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4318",
    "datePublished": "2019-04-03T17:43:14.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:11:22.597Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-4323 (GCVE-0-2018-4323)

Vulnerability from cvelistv5 – Published: 2019-04-03 17:43 – Updated: 2024-08-05 05:11

Summary

Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.

Severity ?

No CVSS data available.

CWE

Processing maliciously crafted web content may lead to arbitrary code execution

Assigner

apple

References

URL

Tags

	https://support.apple.com/kb/HT209141	x_refsource_MISC
	https://support.apple.com/kb/HT209140	x_refsource_MISC
	https://support.apple.com/kb/HT209107	x_refsource_MISC
	https://support.apple.com/kb/HT209106	x_refsource_MISC
	https://support.apple.com/kb/HT209109	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	iOS, tvOS, Safari, iTunes for Windows, iCloud for Windows	Affected: Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:11:22.560Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209141"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209140"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209107"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209106"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209109"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS, tvOS, Safari,  iTunes for Windows, iCloud for Windows",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Processing maliciously crafted web content may lead to arbitrary code execution",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-04-03T17:43:14.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209141"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209140"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209107"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209106"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209109"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4323",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "iOS, tvOS, Safari,  iTunes for Windows, iCloud for Windows",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Processing maliciously crafted web content may lead to arbitrary code execution"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/kb/HT209141",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209141"
            },
            {
              "name": "https://support.apple.com/kb/HT209140",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209140"
            },
            {
              "name": "https://support.apple.com/kb/HT209107",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209107"
            },
            {
              "name": "https://support.apple.com/kb/HT209106",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209106"
            },
            {
              "name": "https://support.apple.com/kb/HT209109",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209109"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4323",
    "datePublished": "2019-04-03T17:43:15.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:11:22.560Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-4165 (GCVE-0-2018-4165)

Vulnerability from cvelistv5 – Published: 2018-04-03 06:00 – Updated: 2024-08-05 05:04

Summary

An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.

Severity ?

No CVSS data available.

CWE

n/a

Assigner

apple

References

URL

Tags

	http://www.securitytracker.com/id/1040604	vdb-entryx_refsource_SECTRACK
	https://support.apple.com/HT208698	x_refsource_CONFIRM
	https://security.gentoo.org/glsa/201808-04	vendor-advisoryx_refsource_GENTOO
	https://support.apple.com/HT208693	x_refsource_CONFIRM
	https://support.apple.com/HT208694	x_refsource_CONFIRM
	https://support.apple.com/HT208697	x_refsource_CONFIRM
	https://usn.ubuntu.com/3635-1/	vendor-advisoryx_refsource_UBUNTU
	https://support.apple.com/HT208695	x_refsource_CONFIRM

Date Public ?

2018-03-29 00:00

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:04:29.851Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "1040604",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1040604"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208698"
          },
          {
            "name": "GLSA-201808-04",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/201808-04"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208693"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208694"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208697"
          },
          {
            "name": "USN-3635-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3635-1/"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208695"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2018-03-29T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-10-21T09:57:02.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "name": "1040604",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1040604"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.apple.com/HT208698"
        },
        {
          "name": "GLSA-201808-04",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/201808-04"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.apple.com/HT208693"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.apple.com/HT208694"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.apple.com/HT208697"
        },
        {
          "name": "USN-3635-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3635-1/"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.apple.com/HT208695"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4165",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "1040604",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1040604"
            },
            {
              "name": "https://support.apple.com/HT208698",
              "refsource": "CONFIRM",
              "url": "https://support.apple.com/HT208698"
            },
            {
              "name": "GLSA-201808-04",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/201808-04"
            },
            {
              "name": "https://support.apple.com/HT208693",
              "refsource": "CONFIRM",
              "url": "https://support.apple.com/HT208693"
            },
            {
              "name": "https://support.apple.com/HT208694",
              "refsource": "CONFIRM",
              "url": "https://support.apple.com/HT208694"
            },
            {
              "name": "https://support.apple.com/HT208697",
              "refsource": "CONFIRM",
              "url": "https://support.apple.com/HT208697"
            },
            {
              "name": "USN-3635-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/3635-1/"
            },
            {
              "name": "https://support.apple.com/HT208695",
              "refsource": "CONFIRM",
              "url": "https://support.apple.com/HT208695"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4165",
    "datePublished": "2018-04-03T06:00:00.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:04:29.851Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-4212 (GCVE-0-2018-4212)

Vulnerability from cvelistv5 – Published: 2019-01-11 18:00 – Updated: 2024-08-05 05:04

Summary

In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. This issue was addressed with improved checks.

Severity ?

No CVSS data available.

CWE

n/a

Assigner

apple

References

URL

Tags

	https://support.apple.com/HT208695%2C	x_refsource_MISC
	https://support.apple.com/HT208697%2C	x_refsource_MISC
	https://support.apple.com/HT208696%2C	x_refsource_MISC
	https://usn.ubuntu.com/3781-1/	vendor-advisoryx_refsource_UBUNTU
	https://support.apple.com/HT208698%2C	x_refsource_MISC
	https://security.gentoo.org/glsa/201812-04	vendor-advisoryx_refsource_GENTOO
	https://support.apple.com/HT208694	x_refsource_CONFIRM
	https://support.apple.com/HT208693%2C	x_refsource_MISC

Date Public ?

2019-01-11 00:00

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:04:29.907Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208695%2C"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208697%2C"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208696%2C"
          },
          {
            "name": "USN-3781-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3781-1/"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208698%2C"
          },
          {
            "name": "GLSA-201812-04",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/201812-04"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208694"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208693%2C"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2019-01-11T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. This issue was addressed with improved checks."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-01-12T10:57:01.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/HT208695%2C"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/HT208697%2C"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/HT208696%2C"
        },
        {
          "name": "USN-3781-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3781-1/"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/HT208698%2C"
        },
        {
          "name": "GLSA-201812-04",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/201812-04"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.apple.com/HT208694"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/HT208693%2C"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4212",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. This issue was addressed with improved checks."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/HT208695,",
              "refsource": "MISC",
              "url": "https://support.apple.com/HT208695,"
            },
            {
              "name": "https://support.apple.com/HT208697,",
              "refsource": "MISC",
              "url": "https://support.apple.com/HT208697,"
            },
            {
              "name": "https://support.apple.com/HT208696,",
              "refsource": "MISC",
              "url": "https://support.apple.com/HT208696,"
            },
            {
              "name": "USN-3781-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/3781-1/"
            },
            {
              "name": "https://support.apple.com/HT208698,",
              "refsource": "MISC",
              "url": "https://support.apple.com/HT208698,"
            },
            {
              "name": "GLSA-201812-04",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/201812-04"
            },
            {
              "name": "https://support.apple.com/HT208694",
              "refsource": "CONFIRM",
              "url": "https://support.apple.com/HT208694"
            },
            {
              "name": "https://support.apple.com/HT208693,",
              "refsource": "MISC",
              "url": "https://support.apple.com/HT208693,"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4212",
    "datePublished": "2019-01-11T18:00:00.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:04:29.907Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-4315 (GCVE-0-2018-4315)

Vulnerability from cvelistv5 – Published: 2019-04-03 17:43 – Updated: 2024-08-05 05:11

Summary

A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.

Severity ?

No CVSS data available.

CWE

Processing maliciously crafted web content may lead to arbitrary code execution

Assigner

apple

References

URL

Tags

	https://support.apple.com/kb/HT209141	x_refsource_MISC
	https://support.apple.com/kb/HT209140	x_refsource_MISC
	https://support.apple.com/kb/HT209107	x_refsource_MISC
	https://support.apple.com/kb/HT209106	x_refsource_MISC
	https://support.apple.com/kb/HT209109	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	iOS, tvOS, Safari, iTunes for Windows, iCloud for Windows	Affected: Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:11:22.658Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209141"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209140"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209107"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209106"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209109"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS, tvOS, Safari,  iTunes for Windows, iCloud for Windows",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Processing maliciously crafted web content may lead to arbitrary code execution",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-04-03T17:43:14.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209141"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209140"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209107"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209106"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209109"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4315",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "iOS, tvOS, Safari,  iTunes for Windows, iCloud for Windows",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Processing maliciously crafted web content may lead to arbitrary code execution"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/kb/HT209141",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209141"
            },
            {
              "name": "https://support.apple.com/kb/HT209140",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209140"
            },
            {
              "name": "https://support.apple.com/kb/HT209107",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209107"
            },
            {
              "name": "https://support.apple.com/kb/HT209106",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209106"
            },
            {
              "name": "https://support.apple.com/kb/HT209109",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209109"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4315",
    "datePublished": "2019-04-03T17:43:14.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:11:22.658Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-4163 (GCVE-0-2018-4163)

Vulnerability from cvelistv5 – Published: 2018-04-03 06:00 – Updated: 2024-08-05 05:04

Summary

An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. watchOS before 4.3 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.

Severity ?

No CVSS data available.

CWE

n/a

Assigner

apple

References

URL

Tags

	http://www.securitytracker.com/id/1040604	vdb-entryx_refsource_SECTRACK
	https://support.apple.com/HT208698	x_refsource_CONFIRM
	https://security.gentoo.org/glsa/201808-04	vendor-advisoryx_refsource_GENTOO
	https://support.apple.com/HT208696	x_refsource_CONFIRM
	https://support.apple.com/HT208693	x_refsource_CONFIRM
	https://support.apple.com/HT208694	x_refsource_CONFIRM
	https://support.apple.com/HT208697	x_refsource_CONFIRM
	https://usn.ubuntu.com/3635-1/	vendor-advisoryx_refsource_UBUNTU
	https://support.apple.com/HT208695	x_refsource_CONFIRM

Date Public ?

2018-03-29 00:00

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:04:29.865Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "1040604",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1040604"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208698"
          },
          {
            "name": "GLSA-201808-04",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/201808-04"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208696"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208693"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208694"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208697"
          },
          {
            "name": "USN-3635-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3635-1/"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208695"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2018-03-29T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. watchOS before 4.3 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-10-21T09:57:02.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "name": "1040604",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1040604"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.apple.com/HT208698"
        },
        {
          "name": "GLSA-201808-04",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/201808-04"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.apple.com/HT208696"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.apple.com/HT208693"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.apple.com/HT208694"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.apple.com/HT208697"
        },
        {
          "name": "USN-3635-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3635-1/"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.apple.com/HT208695"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4163",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. watchOS before 4.3 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "1040604",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1040604"
            },
            {
              "name": "https://support.apple.com/HT208698",
              "refsource": "CONFIRM",
              "url": "https://support.apple.com/HT208698"
            },
            {
              "name": "GLSA-201808-04",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/201808-04"
            },
            {
              "name": "https://support.apple.com/HT208696",
              "refsource": "CONFIRM",
              "url": "https://support.apple.com/HT208696"
            },
            {
              "name": "https://support.apple.com/HT208693",
              "refsource": "CONFIRM",
              "url": "https://support.apple.com/HT208693"
            },
            {
              "name": "https://support.apple.com/HT208694",
              "refsource": "CONFIRM",
              "url": "https://support.apple.com/HT208694"
            },
            {
              "name": "https://support.apple.com/HT208697",
              "refsource": "CONFIRM",
              "url": "https://support.apple.com/HT208697"
            },
            {
              "name": "USN-3635-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/3635-1/"
            },
            {
              "name": "https://support.apple.com/HT208695",
              "refsource": "CONFIRM",
              "url": "https://support.apple.com/HT208695"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4163",
    "datePublished": "2018-04-03T06:00:00.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:04:29.865Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-4210 (GCVE-0-2018-4210)

Vulnerability from cvelistv5 – Published: 2019-01-11 18:00 – Updated: 2024-08-05 05:04

Summary

In iOS before 11.3, Safari before 11.1, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, an array indexing issue existed in the handling of a function in javascript core. This issue was addressed with improved checks.

Severity ?

No CVSS data available.

CWE

n/a

Assigner

apple

References

URL

Tags

	https://support.apple.com/HT208695%2C	x_refsource_MISC
	https://support.apple.com/HT208694%2C	x_refsource_MISC
	https://support.apple.com/HT208698	x_refsource_CONFIRM
	https://usn.ubuntu.com/3781-1/	vendor-advisoryx_refsource_UBUNTU
	https://security.gentoo.org/glsa/201812-04	vendor-advisoryx_refsource_GENTOO
	https://support.apple.com/HT208693%2C	x_refsource_MISC

Date Public ?

2019-01-11 00:00

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:04:29.852Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208695%2C"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208694%2C"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208698"
          },
          {
            "name": "USN-3781-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3781-1/"
          },
          {
            "name": "GLSA-201812-04",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/201812-04"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT208693%2C"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2019-01-11T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "In iOS before 11.3, Safari before 11.1, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, an array indexing issue existed in the handling of a function in javascript core. This issue was addressed with improved checks."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-01-12T10:57:01.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/HT208695%2C"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/HT208694%2C"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.apple.com/HT208698"
        },
        {
          "name": "USN-3781-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3781-1/"
        },
        {
          "name": "GLSA-201812-04",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/201812-04"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/HT208693%2C"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4210",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "In iOS before 11.3, Safari before 11.1, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, an array indexing issue existed in the handling of a function in javascript core. This issue was addressed with improved checks."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/HT208695,",
              "refsource": "MISC",
              "url": "https://support.apple.com/HT208695,"
            },
            {
              "name": "https://support.apple.com/HT208694,",
              "refsource": "MISC",
              "url": "https://support.apple.com/HT208694,"
            },
            {
              "name": "https://support.apple.com/HT208698",
              "refsource": "CONFIRM",
              "url": "https://support.apple.com/HT208698"
            },
            {
              "name": "USN-3781-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/3781-1/"
            },
            {
              "name": "GLSA-201812-04",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/201812-04"
            },
            {
              "name": "https://support.apple.com/HT208693,",
              "refsource": "MISC",
              "url": "https://support.apple.com/HT208693,"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4210",
    "datePublished": "2019-01-11T18:00:00.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:04:29.852Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-4438 (GCVE-0-2018-4438)

Vulnerability from cvelistv5 – Published: 2019-04-03 17:43 – Updated: 2024-08-05 05:18

Summary

A logic issue existed resulting in memory corruption. This was addressed with improved state management. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9.

Severity ?

No CVSS data available.

CWE

Processing maliciously crafted web content may lead to arbitrary code execution

Assigner

apple

References

URL

Tags

	https://support.apple.com/kb/HT209343	x_refsource_MISC
	https://support.apple.com/kb/HT209342	x_refsource_MISC
	https://support.apple.com/kb/HT209340	x_refsource_MISC
	https://support.apple.com/kb/HT209344	x_refsource_MISC
	https://support.apple.com/kb/HT209346	x_refsource_MISC
	https://support.apple.com/kb/HT209345	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	iOS, tvOS, watchOS, Safari, iTunes for Windows, iCloud for Windows	Affected: Versions prior to: iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:18:25.529Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209343"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209342"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209340"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209344"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209346"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209345"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS, tvOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Versions prior to: iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A logic issue existed resulting in memory corruption. This was addressed with improved state management. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Processing maliciously crafted web content may lead to arbitrary code execution",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-04-03T17:43:19.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209343"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209342"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209340"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209344"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209346"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209345"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4438",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "iOS, tvOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions prior to: iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A logic issue existed resulting in memory corruption. This was addressed with improved state management. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Processing maliciously crafted web content may lead to arbitrary code execution"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/kb/HT209343",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209343"
            },
            {
              "name": "https://support.apple.com/kb/HT209342",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209342"
            },
            {
              "name": "https://support.apple.com/kb/HT209340",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209340"
            },
            {
              "name": "https://support.apple.com/kb/HT209344",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209344"
            },
            {
              "name": "https://support.apple.com/kb/HT209346",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209346"
            },
            {
              "name": "https://support.apple.com/kb/HT209345",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209345"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4438",
    "datePublished": "2019-04-03T17:43:19.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:18:25.529Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-4386 (GCVE-0-2018-4386)

Vulnerability from cvelistv5 – Published: 2019-04-03 17:43 – Updated: 2024-08-05 05:11

Summary

Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.

Severity ?

No CVSS data available.

CWE

Processing maliciously crafted web content may lead to arbitrary code execution

Assigner

apple

References

URL

Tags

	https://support.apple.com/kb/HT209192	x_refsource_MISC
	https://support.apple.com/kb/HT209195	x_refsource_MISC
	https://support.apple.com/kb/HT209194	x_refsource_MISC
	https://support.apple.com/kb/HT209197	x_refsource_MISC
	https://support.apple.com/kb/HT209198	x_refsource_MISC
	https://support.apple.com/kb/HT209196	x_refsource_MISC
	http://packetstormsecurity.com/files/155871/Sony-…	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	iOS, tvOS, watchOS, Safari, iTunes for Windows, iCloud for Windows	Affected: Versions prior to: iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:11:22.678Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209192"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209195"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209194"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209197"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209198"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209196"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/155871/Sony-Playstation-4-Webkit-Code-Execution.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS, tvOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Versions prior to: iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Processing maliciously crafted web content may lead to arbitrary code execution",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-01-08T18:06:12.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209192"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209195"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209194"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209197"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209198"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209196"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://packetstormsecurity.com/files/155871/Sony-Playstation-4-Webkit-Code-Execution.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4386",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "iOS, tvOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions prior to: iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Processing maliciously crafted web content may lead to arbitrary code execution"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/kb/HT209192",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209192"
            },
            {
              "name": "https://support.apple.com/kb/HT209195",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209195"
            },
            {
              "name": "https://support.apple.com/kb/HT209194",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209194"
            },
            {
              "name": "https://support.apple.com/kb/HT209197",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209197"
            },
            {
              "name": "https://support.apple.com/kb/HT209198",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209198"
            },
            {
              "name": "https://support.apple.com/kb/HT209196",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209196"
            },
            {
              "name": "http://packetstormsecurity.com/files/155871/Sony-Playstation-4-Webkit-Code-Execution.html",
              "refsource": "MISC",
              "url": "http://packetstormsecurity.com/files/155871/Sony-Playstation-4-Webkit-Code-Execution.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4386",
    "datePublished": "2019-04-03T17:43:17.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:11:22.678Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2018-4443 (GCVE-0-2018-4443)

Vulnerability from cvelistv5 – Published: 2019-04-03 17:43 – Updated: 2024-08-05 05:18

Summary

A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9.

Severity ?

No CVSS data available.

CWE

Processing maliciously crafted web content may lead to arbitrary code execution

Assigner

apple

References

URL

Tags

	https://support.apple.com/kb/HT209343	x_refsource_MISC
	https://support.apple.com/kb/HT209342	x_refsource_MISC
	https://support.apple.com/kb/HT209340	x_refsource_MISC
	https://support.apple.com/kb/HT209344	x_refsource_MISC
	https://support.apple.com/kb/HT209346	x_refsource_MISC
	https://support.apple.com/kb/HT209345	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	iOS, tvOS, watchOS, Safari, iTunes for Windows, iCloud for Windows	Affected: Versions prior to: iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:18:25.542Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209343"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209342"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209340"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209344"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209346"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT209345"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "iOS, tvOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Versions prior to: iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Processing maliciously crafted web content may lead to arbitrary code execution",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-04-03T17:43:19.000Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209343"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209342"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209340"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209344"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209346"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/kb/HT209345"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4443",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "iOS, tvOS, watchOS, Safari,  iTunes for Windows, iCloud for Windows",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions prior to: iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Processing maliciously crafted web content may lead to arbitrary code execution"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/kb/HT209343",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209343"
            },
            {
              "name": "https://support.apple.com/kb/HT209342",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209342"
            },
            {
              "name": "https://support.apple.com/kb/HT209340",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209340"
            },
            {
              "name": "https://support.apple.com/kb/HT209344",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209344"
            },
            {
              "name": "https://support.apple.com/kb/HT209346",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209346"
            },
            {
              "name": "https://support.apple.com/kb/HT209345",
              "refsource": "MISC",
              "url": "https://support.apple.com/kb/HT209345"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2018-4443",
    "datePublished": "2019-04-03T17:43:19.000Z",
    "dateReserved": "2018-01-02T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:18:25.542Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Log in or create an account to share your comment.

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.