webkit2gtk vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the webkit2gtk package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • H
Use After Free

*
  • H
Out-of-bounds Write

*
  • H
Use After Free

*
  • H
Out-of-bounds Write

*
  • H
Out-of-bounds Write

*
  • H
Out-of-bounds Write

*
  • H
Out-of-bounds Write

*
  • H
Use After Free

*
  • H
Use After Free

*
  • H
CVE-2022-22637

*
  • H
Use After Free

*
  • H
Use After Free

*
  • M
CVE-2022-22592

*
  • M
CVE-2022-22589

*
  • M
Origin Validation Error

*
  • H
Race Condition

*
  • H
Use After Free

*
  • H
Buffer Overflow

*
  • H
Out-of-bounds Read

*
  • H
Integer Overflow or Wraparound

*
  • H
Access of Resource Using Incompatible Type ('Type Confusion')

*
  • H
Use After Free

*
  • M
Use After Free

*
  • M
Memory Leak

*
  • M
Use After Free

*
  • H
Open Redirect

*
  • H
Use After Free

*
  • M
Cross-site Scripting (XSS)

*
  • H
Access of Resource Using Incompatible Type ('Type Confusion')

*
  • M
CVE-2021-30887

*
  • H
Buffer Overflow

*
  • M
Out-of-bounds Read

*
  • M
CVE-2021-30884

*
  • M
CVE-2021-30823

*
  • H
Out-of-bounds Write

*
  • H
Out-of-bounds Write

*
  • H
Out-of-bounds Write

*
  • H
Out-of-bounds Write

*
  • M
CVE-2021-42762

*
  • H
Use After Free

*
  • H
Out-of-bounds Write

*
  • H
Use After Free

*
  • H
Out-of-bounds Write

*
  • M
Cross-site Scripting (XSS)

*
  • H
Use After Free

*
  • M
CVE-2021-30682

*
  • M
Improper Authentication

*
  • H
Out-of-bounds Write

*
  • H
Integer Overflow or Wraparound

*
  • H
Out-of-bounds Write

*
  • M
Exposure of Resource to Wrong Sphere

*
  • M
Cross-site Scripting (XSS)

*
  • H
Access of Resource Using Incompatible Type ('Type Confusion')

*
  • M
Cross-site Scripting (XSS)

*
  • H
Buffer Overflow

*
  • H
Out-of-bounds Write

*
  • H
Out-of-Bounds

*
  • H
Use After Free

*
  • H
CVE-2021-30797

*
  • M
Cross-site Scripting (XSS)

*
  • H
Use After Free

*
  • H
Use After Free

*
  • H
Use After Free

*
  • H
Out-of-Bounds

*
  • C
CVE-2021-1871

*
  • H
Use After Free

*
  • C
CVE-2021-1870

*
  • M
CVE-2021-1799

*
  • M
CVE-2021-1801

*
  • H
Access of Resource Using Incompatible Type ('Type Confusion')

*
  • M
CVE-2021-1765

*
  • H
Use After Free

*
  • H
Use After Free

*
  • L
CVE-2020-29623

*
  • H
Use After Free

*
  • H
Use After Free

*
  • H
Out-of-bounds Write

*
  • H
Use After Free

*
  • H
Cross-site Scripting (XSS)

*
  • H
Access of Resource Using Incompatible Type ('Type Confusion')

*
  • H
Use After Free

*
  • C
Use After Free

*
  • M
Cross-site Scripting (XSS)

*
  • H
Arbitrary Command Injection

*
  • H
Use After Free

*
  • M
Out-of-bounds Read

*
  • M
CVE-2020-9915

*
  • H
Cross-site Scripting (XSS)

*
  • H
Out-of-Bounds

*
  • C
Improper Input Validation

*
  • C
CVE-2020-9850

*
  • H
Out-of-Bounds

*
  • H
Out-of-Bounds

*
  • H
CVE-2020-9802

*
  • H
Cross-site Scripting (XSS)

*
  • M
Always-Incorrect Control Flow Implementation

*
  • H
Resource Exhaustion

*
  • L
Race Condition

*
  • H
Out-of-Bounds

*
  • H
Out-of-Bounds

*
  • M
Cross-site Scripting (XSS)

*
  • H
Access of Resource Using Incompatible Type ('Type Confusion')

*
  • H
Access of Resource Using Incompatible Type ('Type Confusion')

*
  • H
Use After Free

*
  • C
Improper Input Validation

*
  • M
Cross-site Scripting (XSS)

*
  • H
Out-of-Bounds

*
  • H
Out-of-Bounds

*
  • M
Out-of-Bounds

*
  • H
Origin Validation Error

*
  • H
Use After Free

*
  • H
Out-of-bounds Write

*
  • H
Out-of-bounds Write

*
  • H
Out-of-Bounds

*
  • H
Out-of-Bounds

*
  • H
Out-of-bounds Write

*
  • H
Out-of-Bounds

*
  • M
Cross-site Scripting (XSS)

*
  • H
Out-of-bounds Write

*
  • H
Out-of-Bounds

*
  • H
Out-of-Bounds

*
  • H
Out-of-Bounds

*
  • H
Out-of-Bounds

*
  • H
Out-of-Bounds

*
  • H
Out-of-Bounds

*
  • H
Out-of-Bounds

*
  • H
Out-of-bounds Write

*
  • H
Out-of-Bounds

*
  • H
Out-of-Bounds

*
  • H
Out-of-Bounds

*
  • H
Out-of-Bounds

*
  • M
Cross-site Scripting (XSS)

*
  • M
Cross-site Scripting (XSS)

*
  • M
Cross-site Scripting (XSS)

*
  • H
Use After Free

*
  • H
Use After Free

*
  • M
Improper Restriction of Rendered UI Layers or Frames

*
  • M
Cross-site Scripting (XSS)

*
  • M
Information Exposure

*
  • H
Out-of-Bounds

*
  • H
Out-of-Bounds

*
  • H
Out-of-Bounds

*
  • M
Information Exposure

*
  • H
Out-of-Bounds

*
  • M
Cross-site Scripting (XSS)

*
  • H
Out-of-bounds Write

*
  • H
Out-of-bounds Write

*
  • H
Out-of-Bounds

*
  • H
Out-of-bounds Write

*
  • H
Out-of-bounds Write

*
  • H
Out-of-bounds Write

*
  • H
Out-of-bounds Write

*
  • H
Use After Free

*
  • H
Out-of-bounds Write

*
  • H
Out-of-bounds Write

*
  • H
Use After Free

*
  • H
Out-of-bounds Write

*
  • H
Out-of-bounds Write

*
  • H
Out-of-bounds Write

*
  • H
Use After Free

*
  • M
Cross-site Scripting (XSS)

*
  • M
Cross-site Scripting (XSS)

*
  • H
Out-of-bounds Write

*
  • H
Out-of-Bounds

*
  • H
Out-of-bounds Write

*
  • H
Out-of-bounds Write

*
  • H
Out-of-bounds Write

*
  • H
Out-of-bounds Write

*
  • H
Out-of-bounds Write

*
  • H
Out-of-bounds Write

*
  • H
Integer Overflow or Wraparound

*
  • H
Out-of-bounds Write

*
  • H
Out-of-bounds Write

*
  • H
Use After Free

*
  • M
Access of Resource Using Incompatible Type ('Type Confusion')

*
  • H
Out-of-bounds Write

*
  • M
Use After Free

*
  • H
Use After Free

*
  • H
Improper Validation of Array Index

*
  • H
Out-of-bounds Write

*
  • H
Out-of-bounds Write

*
  • H
Use After Free

*
  • M
Out-of-bounds Read

*
  • H
Out-of-bounds Write

*
  • M
Out-of-bounds Read

*
  • H
Out-of-bounds Write

*
  • H
Out-of-bounds Write

*
  • H
Out-of-bounds Write

*
  • H
Out-of-bounds Write

*
  • M
Improper Input Validation

*
  • M
Cross-site Scripting (XSS)

*
  • M
Information Exposure

*
  • H
Out-of-bounds Write

*
  • H
Access of Resource Using Incompatible Type ('Type Confusion')

*
  • H
Use After Free

*
  • H
Use After Free

*
  • H
Out-of-bounds Write

*
  • H
Out-of-bounds Write

*
  • H
Out-of-bounds Write

*
  • H
Improper Input Validation

*
  • H
Out-of-bounds Write

*
  • M
Improper Data Handling

*
  • L
Out-of-Bounds

*
  • L
Out-of-bounds Write

*
  • L
Access of Resource Using Incompatible Type ('Type Confusion')

*
  • L
Out-of-bounds Write

*
  • L
Out-of-bounds Write

*
  • L
Out-of-bounds Write

*
  • L
Out-of-bounds Write

*
  • L
Out-of-bounds Write

*
  • L
Cross-site Scripting (XSS)

*
  • L
Out-of-bounds Write

*
  • H
CVE-2019-6251

*
  • L
Out-of-Bounds

*
  • L
Out-of-Bounds

*
  • L
Out-of-Bounds

*
  • L
Out-of-Bounds

*
  • L
Out-of-Bounds

*
  • L
Out-of-Bounds

*
  • L
Out-of-Bounds

*
  • L
Out-of-Bounds

*
  • L
Out-of-Bounds

*
  • L
Out-of-Bounds

*
  • L
Out-of-Bounds

*
  • L
Out-of-Bounds

*
  • L
Out-of-Bounds

*
  • L
Out-of-Bounds

*
  • L
Cross-site Scripting (XSS)

*
  • L
Out-of-Bounds

*
  • L
CVE-2018-4361

*
  • L
Use After Free

*
  • L
Out-of-Bounds

*
  • L
Use After Free

*
  • L
Out-of-Bounds

*
  • L
Improper Input Validation

*
  • L
Use After Free

*
  • L
Cross-site Scripting (XSS)

*
  • L
Use After Free

*
  • L
Out-of-Bounds

*
  • L
Origin Validation Error

*
  • L
Improper Validation of Array Index

*
  • L
Out-of-Bounds

*
  • L
Improper Input Validation

*
  • L
Out-of-Bounds

*
  • L
CVE-2018-4212

*
  • L
Use After Free

*
  • L
Improper Input Validation

*
  • L
Information Exposure

*
  • L
Out-of-Bounds

*
  • L
Out-of-Bounds

*
  • L
Use After Free

*
  • L
Improper Input Validation

*
  • L
Use After Free

*
  • L
Out-of-Bounds

*
  • L
Out-of-Bounds

*
  • L
Out-of-Bounds

*
  • L
Out-of-Bounds

*
  • L
Out-of-Bounds

*
  • L
Incorrect Type Conversion or Cast

*
  • L
Out-of-Bounds

*
  • L
Out-of-Bounds

*
  • L
Out-of-Bounds

*
  • L
Out-of-Bounds

*
  • L
CVE-2018-4278

*
  • L
Race Condition

*
  • L
Out-of-Bounds

*
  • L
Out-of-bounds Write

*
  • L
Use After Free

*
  • L
Out-of-bounds Write

*
  • L
Out-of-Bounds

*
  • L
Insufficiently Protected Credentials

*
  • L
Use After Free

*
  • L
Out-of-bounds Read

*
  • L
CVE-2018-4232

*
  • L
Incorrect Type Conversion or Cast

*
  • L
Use After Free

*
  • L
Out-of-Bounds

*
  • L
Out-of-Bounds

*
  • L
Out-of-Bounds

*
  • L
Out-of-Bounds

*
  • L
Race Condition

*
  • L
Improper Certificate Validation

*
  • L
CVE-2018-11713

*
  • L
CVE-2018-11646

*
  • H
Out-of-Bounds

<2.18.6-1~deb9u1
  • H
Arbitrary Command Injection

<2.18.6-1~deb9u1
  • L
Out-of-Bounds

*
  • L
Reachable Assertion

*
  • L
Out-of-Bounds

*
  • L
Out-of-Bounds

*
  • H
Out-of-Bounds

<2.18.6-1~deb9u1
  • M
Open Redirect

<2.18.6-1~deb9u1
  • L
Out-of-Bounds

*
  • L
Out-of-Bounds

*
  • L
Out-of-Bounds

*
  • L
Out-of-Bounds

*
  • L
Out-of-Bounds

*
  • L
Out-of-Bounds

*
  • L
Out-of-Bounds

*
  • H
Out-of-Bounds

<2.18.6-1~deb9u1
  • H
Out-of-Bounds

<2.18.6-1~deb9u1
  • L
Cross-site Scripting (XSS)

*
  • L
Out-of-Bounds

*
  • L
Out-of-Bounds

*
  • H
Out-of-Bounds

<2.18.6-1~deb9u1
  • L
Out-of-Bounds

*
  • L
Out-of-Bounds

*
  • L
Out-of-Bounds

*
  • L
Information Exposure

*
  • L
Out-of-Bounds

*
  • H
Out-of-Bounds

<2.18.6-1~deb9u1
  • H
Out-of-Bounds

<2.18.6-1~deb9u1
  • L
Out-of-Bounds

<2.18.1-1
  • L
Out-of-Bounds

<2.18.4-1
  • L
Out-of-Bounds

<2.18.4-1
  • L
Out-of-Bounds

<2.18.4-1
  • L
Out-of-Bounds

<2.18.4-1
  • L
Out-of-Bounds

*
  • L
Out-of-Bounds

<2.18.3-1
  • L
Out-of-Bounds

<2.18.1-1
  • L
Out-of-Bounds

<2.18.1-1
  • L
Out-of-Bounds

<2.18.1-1
  • L
Out-of-Bounds

<2.18.1-1
  • L
Out-of-Bounds

<2.18.1-1
  • L
Out-of-Bounds

<2.18.1-1
  • L
Out-of-Bounds

<2.18.1-1
  • L
Out-of-Bounds

<2.18.1-1
  • L
Out-of-Bounds

<2.18.3-1
  • L
Out-of-Bounds

<2.18.1-1
  • L
Out-of-Bounds

<2.18.3-1
  • L
Out-of-Bounds

<2.18.1-1
  • L
Improper Input Validation

<2.16.3-2
  • L
Integer Overflow or Wraparound

<2.16.3-2
  • L
Out-of-Bounds

<2.18.1-1
  • L
Cross-site Scripting (XSS)

<2.18.1-1
  • L
Out-of-Bounds

<2.18.1-1
  • L
Information Exposure

<2.18.1-1
  • L
Out-of-Bounds

<2.18.1-1
  • L
Out-of-Bounds

<2.18.1-1
  • L
Out-of-Bounds

<2.18.1-1
  • L
Out-of-Bounds

<2.18.1-1
  • L
Out-of-Bounds

<2.18.1-1
  • L
Out-of-Bounds

<2.18.1-1
  • L
Cross-site Scripting (XSS)

<2.18.1-1
  • L
Out-of-Bounds

<2.18.1-1
  • L
Out-of-Bounds

<2.18.1-1
  • L
Out-of-Bounds

<2.18.1-1
  • L
Out-of-Bounds

<2.18.1-1
  • L
Information Exposure

<2.18.1-1
  • L
Out-of-Bounds

<2.18.1-1
  • L
Out-of-Bounds

<2.18.1-1
  • L
Out-of-Bounds

<2.18.1-1
  • L
Out-of-Bounds

<2.18.1-1
  • L
Out-of-Bounds

<2.18.1-1
  • L
Cross-site Scripting (XSS)

<2.16.3-2
  • H
Out-of-Bounds

<2.16.6-0+deb9u1
  • L
Improper Input Validation

<2.16.3-2
  • H
Out-of-Bounds

<2.16.6-0+deb9u1
  • L
Out-of-Bounds

<2.16.3-2
  • H
Out-of-Bounds

<2.16.6-0+deb9u1
  • L
Out-of-Bounds

<2.16.3-2
  • H
Out-of-Bounds

<2.16.6-0+deb9u1
  • H
Out-of-Bounds

<2.16.6-0+deb9u1
  • H
Out-of-Bounds

<2.16.6-0+deb9u1
  • L
Out-of-Bounds

<2.16.3-2
  • H
Out-of-Bounds

<2.16.6-0+deb9u1
  • M
Improper Input Validation

<2.16.6-0+deb9u1
  • L
Information Exposure

<2.16.3-2
  • H
Out-of-Bounds

<2.16.6-0+deb9u1
  • L
Out-of-Bounds

<2.16.3-2
  • L
Out-of-Bounds

<2.16.3-2
  • H
Out-of-Bounds

<2.16.6-0+deb9u1
  • L
Out-of-Bounds

<2.16.3-2
  • L
Out-of-Bounds

<2.16.3-2
  • L
Out-of-Bounds

<2.16.3-2
  • H
Out-of-Bounds

<2.16.6-0+deb9u1
  • M
Cross-site Scripting (XSS)

<2.16.6-0+deb9u1
  • H
Out-of-Bounds

<2.16.6-0+deb9u1
  • L
Cross-site Scripting (XSS)

<2.16.3-1
  • L
Out-of-Bounds

<2.16.3-1
  • L
Out-of-Bounds

<2.16.3-1
  • H
Out-of-Bounds

<2.16.6-0+deb9u1
  • L
Out-of-Bounds

<2.16.3-2
  • L
Out-of-Bounds

<2.16.3-2
  • L
Cross-site Scripting (XSS)

<2.16.3-2
  • L
Out-of-Bounds

<2.16.3-2
  • L
Out-of-Bounds

<2.16.3-2
  • L
Out-of-Bounds

<2.16.3-2
  • L
Out-of-Bounds

<2.16.3-2
  • L
Out-of-Bounds

<2.16.3-2
  • L
Cross-site Scripting (XSS)

<2.16.3-2
  • L
Cross-site Scripting (XSS)

<2.16.3-2
  • L
Out-of-Bounds

<2.16.3-2
  • L
Cross-site Scripting (XSS)

<2.16.3-2
  • L
Out-of-Bounds

<2.16.3-2
  • L
Out-of-Bounds

<2.16.3-2
  • L
Out-of-Bounds

<2.16.3-2
  • L
Out-of-Bounds

<2.16.3-2
  • L
Out-of-Bounds

<2.16.3-2
  • L
Out-of-Bounds

<2.16.3-2
  • L
CVE-2017-2376

<2.16.3-2
  • L
Out-of-Bounds

<2.14.6-1
  • L
Out-of-Bounds

<2.14.6-1
  • L
Out-of-Bounds

<2.16.3-2
  • L
Cross-site Scripting (XSS)

<2.14.6-1
  • L
Out-of-Bounds

<2.14.6-1
  • L
Information Exposure

<2.16.3-2
  • L
Out-of-Bounds

<2.16.3-2
  • L
Out-of-Bounds

<2.16.3-2
  • L
Out-of-Bounds

<2.16.3-2
  • L
Out-of-Bounds

<2.14.6-1
  • L
Out-of-Bounds

<2.14.6-1
  • L
CVE-2017-2415

<2.14.6-1
  • L
Out-of-Bounds

<2.14.6-1
  • L
Improper Input Validation

<2.14.6-1
  • L
Out-of-Bounds

<2.16.3-2
  • L
Out-of-Bounds

<2.14.6-1
  • L
Out-of-Bounds

<2.14.6-1
  • L
Out-of-Bounds

<2.16.3-2
  • L
CVE-2017-2419

<2.14.6-1
  • L
Out-of-Bounds

<2.14.6-1
  • L
Out-of-Bounds

<2.14.6-1
  • L
Out-of-Bounds

<2.16.3-2
  • L
CVE-2017-2446

<2.14.6-1
  • L
Out-of-Bounds

<2.14.6-1
  • L
Cross-site Scripting (XSS)

<2.16.3-2
  • L
Use After Free

<2.14.6-1
  • L
Out-of-Bounds

<2.14.6-1
  • L
Out-of-Bounds

<2.16.3-2
  • L
Out-of-Bounds

<2.16.3-2
  • L
CVE-2017-2386

<2.16.3-2
  • L
Out-of-Bounds

<2.14.3-1
  • L
Out-of-Bounds

<2.14.3-1
  • L
Information Exposure

<2.14.3-1
  • L
Out-of-Bounds

<2.14.4-1
  • L
Out-of-Bounds

<2.14.3-1
  • L
Out-of-Bounds

<2.14.3-1
  • L
Out-of-Bounds

<2.14.3-1
  • L
Out-of-Bounds

<2.14.3-1
  • L
Out-of-Bounds

<2.14.3-1
  • L
Out-of-Bounds

<2.14.3-1
  • L
Out-of-Bounds

<2.14.4-1
  • L
Out-of-Bounds

<2.14.3-1
  • L
Information Exposure

<2.14.4-1
  • L
Out-of-Bounds

<2.14.4-1
  • L
Information Exposure

<2.14.3-1
  • L
Out-of-Bounds

<2.14.4-1
  • L
Out-of-Bounds

<2.14.3-1
  • L
Information Exposure

<2.14.6-1
  • L
Out-of-Bounds

<2.14.4-1
  • L
Out-of-Bounds

<2.14.3-1
  • L
Out-of-Bounds

<2.14.4-1
  • L
Out-of-Bounds

<2.14.3-1
  • L
Out-of-Bounds

<2.14.3-1
  • L
Information Exposure

<2.14.3-1
  • L
Out-of-Bounds

<2.14.3-1
  • L
Out-of-Bounds

<2.14.3-1
  • L
Information Exposure

<2.14.4-1
  • L
Out-of-Bounds

<2.14.3-1
  • L
Information Exposure

<2.14.4-1
  • L
Out-of-Bounds

<2.14.3-1
  • L
Out-of-Bounds

<2.14.4-1
  • L
Out-of-Bounds

<2.14.3-1
  • L
Information Exposure

<2.14.3-1
  • L
Information Exposure

<2.14.3-1
  • L
Out-of-Bounds

<2.14.3-1
  • L
Improper Input Validation

<2.14.4-1
  • L
Out-of-Bounds

<2.12.4-1
  • L
Improper Input Validation

<2.12.4-1
  • L
Out-of-Bounds

<2.12.4-1
  • L
Improper Access Control

<2.12.4-1
  • L
Out-of-Bounds

<2.10.5-1
  • L
Out-of-Bounds

<2.10.5-1