git: 2af423a9b693 - main - security/vuxml: add www/webkit2-gtk3
Baptiste Daroussin
bapt at FreeBSD.org
Mon Sep 27 08:40:10 UTC 2021
The branch main has been updated by bapt:
URL: https://cgit.FreeBSD.org/ports/commit/?id=2af423a9b6934746475dd8d4fd7d699597e70b78
commit 2af423a9b6934746475dd8d4fd7d699597e70b78
Author: Evgeniy Khramtsov <evgeniy at khramtsov.org>
AuthorDate: 2021-09-24 22:28:18 +0000
Commit: Baptiste Daroussin <bapt at FreeBSD.org>
CommitDate: 2021-09-27 08:39:45 +0000
security/vuxml: add www/webkit2-gtk3
PR: 255528
Obtained from: https://webkitgtk.org/security/WSA-2021-0005.html
---
security/vuxml/vuln-2021.xml | 26 ++++++++++++++++++++++++++
1 file changed, 26 insertions(+)
diff --git a/security/vuxml/vuln-2021.xml b/security/vuxml/vuln-2021.xml
index d4297f3ad094..785e6485c0b2 100644
--- a/security/vuxml/vuln-2021.xml
+++ b/security/vuxml/vuln-2021.xml
@@ -1,3 +1,29 @@
+ <vuln vid="576aa394-1d85-11ec-8b7d-4f5b624574e2">
+ <topic>webkit2-gtk3 -- multiple vulnerabilities</topic>
+ <affects>
+ <package>
+ <name>webkit2-gtk3</name>
+ <range><lt>2.32.4</lt></range>
+ </package>
+ </affects>
+ <description>
+ <body xmlns="http://www.w3.org/1999/xhtml">
+ <p>The WebKitGTK project reports vulnerabilities:</p>
+ <blockquote cite="https://webkitgtk.org/security/WSA-2021-0005.html">
+ <ul><li>CVE-2021-30858: Processing maliciously crafted web content may lead to arbitrary code execution.</li></ul>
+ </blockquote>
+ </body>
+ </description>
+ <references>
+ <cvename>CVE-2021-30858</cvename>
+ <url>https://webkitgtk.org/security/WSA-2021-0005.html</url>
+ </references>
+ <dates>
+ <discovery>2021-09-20</discovery>
+ <entry>2021-09-24</entry>
+ </dates>
+ </vuln>
+
<vuln vid="b6c875f1-1d76-11ec-ae80-704d7b472482">
<topic>chromium -- use after free in Portals</topic>
<affects>
More information about the dev-commits-ports-all
mailing list