vulnerability

Amazon Linux AMI 2: CVE-2019-8535: Security patch for webkitgtk4 (Multiple Advisories)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
9	(AV:N/AC:M/Au:N/C:C/I:C/A:C)	Dec 18, 2019	Nov 12, 2020	May 20, 2026

Severity

CVSS

(AV:N/AC:M/Au:N/C:C/I:C/A:C)

Published

Dec 18, 2019

Added

Nov 12, 2020

Modified

May 20, 2026

Description

A memory corruption issue was addressed with improved state management. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution.

Solutions

amazon-linux-ami-2-upgrade-webkitgtk4amazon-linux-ami-2-upgrade-webkitgtk4-debuginfoamazon-linux-ami-2-upgrade-webkitgtk4-develamazon-linux-ami-2-upgrade-webkitgtk4-docamazon-linux-ami-2-upgrade-webkitgtk4-jscamazon-linux-ami-2-upgrade-webkitgtk4-jsc-devel

References

AMAZON-AL2/ALAS-2020-1563
CVE-2019-8535
https://attackerkb.com/topics/CVE-2019-8535
CWE-787
EUVD-EUVD-2019-17925
https://euvd.enisa.europa.eu/vulnerability/EUVD-2019-17925

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report