Search CVE reports


Toggle filters

1 – 10 of 1397 results


CVE-2024-44309

High priority
Vulnerable

A cookie management issue was addressed with improved state management. This issue is fixed in Safari 18.1.1, iOS 17.7.2 and iPadOS 17.7.2, macOS Sequoia 15.1.1, iOS 18.1.1 and iPadOS 18.1.1, visionOS 2.1.1. Processing maliciously...

5 affected packages

qtwebkit-opensource-src, qtwebkit-source, webkit2gtk, webkitgtk, wpewebkit

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
qtwebkit-opensource-src Ignored Ignored Ignored Ignored Ignored
qtwebkit-source Not in release Not in release Not in release Ignored Ignored
webkit2gtk Vulnerable Vulnerable Ignored Ignored Ignored
webkitgtk Not in release Not in release Not in release Ignored Ignored
wpewebkit Not in release Ignored Ignored
Show less packages

CVE-2024-44308

High priority
Vulnerable

The issue was addressed with improved checks. This issue is fixed in Safari 18.1.1, iOS 17.7.2 and iPadOS 17.7.2, macOS Sequoia 15.1.1, iOS 18.1.1 and iPadOS 18.1.1, visionOS 2.1.1. Processing maliciously crafted web content may...

5 affected packages

qtwebkit-opensource-src, qtwebkit-source, webkit2gtk, webkitgtk, wpewebkit

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
qtwebkit-opensource-src Ignored Ignored Ignored Ignored Ignored
qtwebkit-source Not in release Not in release Not in release Ignored Ignored
webkit2gtk Vulnerable Vulnerable Ignored Ignored Ignored
webkitgtk Not in release Not in release Not in release Ignored Ignored
wpewebkit Not in release Ignored Ignored
Show less packages

CVE-2024-44296

Medium priority

Some fixes available 3 of 18

The issue was addressed with improved checks. This issue is fixed in tvOS 18.1, iOS 18.1 and iPadOS 18.1, iOS 17.7.1 and iPadOS 17.7.1, watchOS 11.1, visionOS 2.1, macOS Sequoia 15.1, Safari 18.1. Processing maliciously crafted...

5 affected packages

qtwebkit-opensource-src, qtwebkit-source, webkit2gtk, webkitgtk, wpewebkit

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
qtwebkit-opensource-src Ignored Ignored Ignored Ignored Ignored
qtwebkit-source Not in release Not in release Not in release Ignored Ignored
webkit2gtk Fixed Fixed Ignored Ignored Ignored
webkitgtk Not in release Not in release Not in release Ignored Ignored
wpewebkit Not in release Ignored Ignored
Show less packages

CVE-2024-44244

Medium priority

Some fixes available 3 of 18

A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 18.1 and iPadOS 18.1, watchOS 11.1, visionOS 2.1, tvOS 18.1, macOS Sequoia 15.1, Safari 18.1. Processing maliciously crafted web...

5 affected packages

qtwebkit-opensource-src, qtwebkit-source, webkit2gtk, webkitgtk, wpewebkit

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
qtwebkit-opensource-src Ignored Ignored Ignored Ignored Ignored
qtwebkit-source Not in release Not in release Not in release Ignored Ignored
webkit2gtk Fixed Fixed Ignored Ignored Ignored
webkitgtk Not in release Not in release Not in release Ignored Ignored
wpewebkit Not in release Ignored Ignored
Show less packages

CVE-2024-44185

Medium priority

Some fixes available 3 of 18

The issue was addressed with improved checks. This issue is fixed in tvOS 17.6, visionOS 1.3, Safari 17.6, watchOS 10.6, iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6. Processing maliciously crafted web content may lead to an...

5 affected packages

qtwebkit-opensource-src, qtwebkit-source, webkit2gtk, webkitgtk, wpewebkit

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
qtwebkit-opensource-src Ignored Ignored Ignored Ignored Ignored
qtwebkit-source Not in release Not in release Not in release Ignored Ignored
webkit2gtk Fixed Fixed Ignored Ignored Ignored
webkitgtk Not in release Not in release Not in release Ignored Ignored
wpewebkit Not in release Ignored Ignored
Show less packages

CVE-2024-44187

Medium priority

Some fixes available 3 of 18

A cross-origin issue existed with "iframe" elements. This was addressed with improved tracking of security origins. This issue is fixed in Safari 18, visionOS 2, watchOS 11, macOS Sequoia 15, iOS 18 and iPadOS 18, tvOS 18. A...

5 affected packages

qtwebkit-opensource-src, qtwebkit-source, webkit2gtk, webkitgtk, wpewebkit

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
qtwebkit-opensource-src Ignored Ignored Ignored Ignored Ignored
qtwebkit-source Not in release Not in release Not in release Ignored Ignored
webkit2gtk Fixed Fixed Ignored Ignored Ignored
webkitgtk Not in release Not in release Not in release Ignored Ignored
wpewebkit Not in release Ignored Ignored
Show less packages

CVE-2024-40866

Medium priority

Some fixes available 3 of 18

The issue was addressed with improved UI. This issue is fixed in Safari 18, macOS Sequoia 15. Visiting a malicious website may lead to address bar spoofing.

5 affected packages

qtwebkit-opensource-src, qtwebkit-source, webkit2gtk, webkitgtk, wpewebkit

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
qtwebkit-opensource-src Ignored Ignored Ignored Ignored Ignored
qtwebkit-source Not in release Not in release Not in release Ignored Ignored
webkit2gtk Fixed Fixed Ignored Ignored Ignored
webkitgtk Not in release Not in release Not in release Ignored Ignored
wpewebkit Not in release Ignored Ignored
Show less packages

CVE-2024-40794

Medium priority
Ignored

This issue was addressed through improved state management. This issue is fixed in macOS Sonoma 14.6, iOS 17.6 and iPadOS 17.6, Safari 17.6. Private Browsing tabs may be accessed without authentication.

5 affected packages

qtwebkit-opensource-src, qtwebkit-source, webkit2gtk, webkitgtk, wpewebkit

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
qtwebkit-opensource-src Ignored Ignored Ignored Ignored Ignored
qtwebkit-source Not in release Not in release Not in release Ignored Ignored
webkit2gtk Not affected Not affected Ignored Ignored Ignored
webkitgtk Not in release Not in release Not in release Ignored Ignored
wpewebkit Not in release Ignored Ignored
Show less packages

CVE-2024-40789

Medium priority

Some fixes available 2 of 16

An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, Safari 17.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6, tvOS 17.6, visionOS 1.3, macOS Sonoma...

5 affected packages

qtwebkit-opensource-src, qtwebkit-source, webkit2gtk, webkitgtk, wpewebkit

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
qtwebkit-opensource-src Ignored Ignored Ignored Ignored Ignored
qtwebkit-source Not in release Not in release Not in release Ignored Ignored
webkit2gtk Fixed Fixed Ignored Ignored Ignored
webkitgtk Not in release Not in release Not in release Ignored Ignored
wpewebkit Not in release Ignored Ignored
Show less packages

CVE-2024-40785

Medium priority
Ignored

This issue was addressed with improved checks. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, Safari 17.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6, tvOS 17.6, visionOS 1.3, macOS Sonoma 14.6. Processing maliciously crafted...

5 affected packages

qtwebkit-opensource-src, qtwebkit-source, webkit2gtk, webkitgtk, wpewebkit

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
qtwebkit-opensource-src Ignored Ignored Ignored Ignored Ignored
qtwebkit-source Not in release Not in release Not in release Ignored Ignored
webkit2gtk Not affected Not affected Ignored Ignored Ignored
webkitgtk Not in release Not in release Not in release Ignored Ignored
wpewebkit Not in release Ignored Ignored
Show less packages