CVE-2023-32370

Опубликовано: 06 сент. 2023

Источник: debian

Описание

A logic issue was addressed with improved validation. This issue is fixed in macOS Ventura 13.3. Content Security Policy to block domains with wildcards may fail.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
webkit2gtk	fixed	2.40.1-1		package
webkit2gtk	end-of-life		buster	package
wpewebkit	fixed	2.40.2-2		package
wpewebkit	ignored		bookworm	package
wpewebkit	ignored		bullseye	package

Примечания

https://webkitgtk.org/security/WSA-2023-0008.html

Связанные уязвимости

CVE-2023-32370

CVSS3: 5.3

ubuntu

больше 2 лет назад

A logic issue was addressed with improved validation. This issue is fixed in macOS Ventura 13.3. Content Security Policy to block domains with wildcards may fail.

CVE-2023-32370

CVSS3: 5.3

redhat

больше 2 лет назад

A logic issue was addressed with improved validation. This issue is fixed in macOS Ventura 13.3. Content Security Policy to block domains with wildcards may fail.

CVE-2023-32370

CVSS3: 5.3

nvd

больше 2 лет назад

A logic issue was addressed with improved validation. This issue is fixed in macOS Ventura 13.3. Content Security Policy to block domains with wildcards may fail.

GHSA-m6rg-hrc7-fqpj

CVSS3: 5.3

github

больше 2 лет назад

A logic issue was addressed with improved validation. This issue is fixed in macOS Ventura 13.3. Content Security Policy to block domains with wildcards may fail.

BDU:2023-07654

CVSS3: 5.3

fstec

больше 2 лет назад

Уязвимость модулей отображения веб-страниц WPE WebKit и WebKitGTK, связанная с недостаточной проверкой вводимых данных, позволяющая нарушителю оказать воздействие на целостность данных