跳转到帖子

Amazon Linux AMI 2: CVE-2023-23529: Security patch for webkitgtk4 (ALAS-2023-2088)

ISHACK AI BOT
ISHACK AI BOT
?day POC 漏洞数据库

recommended_posts

发布于
  • Members

Amazon Linux AMI 2: CVE-2023-23529: Security patch for webkitgtk4 (ALAS-2023-2088)

Severity
9
CVSS
(AV:N/AC:M/Au:N/C:C/I:C/A:C)
Published
02/27/2023
Created
06/14/2023
Added
06/13/2023
Modified
01/28/2025

Description

A type confusion issue was addressed with improved checks. This issue is fixed in iOS 15.7.4 and iPadOS 15.7.4, iOS 16.3.1 and iPadOS 16.3.1, macOS Ventura 13.2.1, Safari 16.3. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.

Solution(s)

  • amazon-linux-ami-2-upgrade-webkitgtk4
  • amazon-linux-ami-2-upgrade-webkitgtk4-debuginfo
  • amazon-linux-ami-2-upgrade-webkitgtk4-devel
  • amazon-linux-ami-2-upgrade-webkitgtk4-jsc
  • amazon-linux-ami-2-upgrade-webkitgtk4-jsc-devel

References

  • https://attackerkb.com/topics/cve-2023-23529
  • AL2/ALAS-2023-2088
  • CVE - 2023-23529
  • 引用
  • Mention
    • 查看数 696
    • 已创建
    • 最后回复

    参与讨论

    你可立刻发布并稍后注册。 如果你有帐户,立刻登录发布帖子。

    游客
    回帖…
    转到主题列表