vulnerability
CentOS Linux: CVE-2022-26717: Moderate: webkit2gtk3 security and bug fix update (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 9 | (AV:N/AC:M/Au:N/C:C/I:C/A:C) | Nov 1, 2022 | Nov 9, 2022 | Jan 28, 2025 |
Severity
9
CVSS
(AV:N/AC:M/Au:N/C:C/I:C/A:C)
Published
Nov 1, 2022
Added
Nov 9, 2022
Modified
Jan 28, 2025
Description
A use after free issue was addressed with improved memory management. This issue is fixed in tvOS 15.5, watchOS 8.6, iOS 15.5 and iPadOS 15.5, macOS Monterey 12.4, Safari 15.5, iTunes 12.12.4 for Windows. Processing maliciously crafted web content may lead to arbitrary code execution.
Solutions
centos-upgrade-glib2centos-upgrade-glib2-debuginfocentos-upgrade-glib2-debugsourcecentos-upgrade-glib2-develcentos-upgrade-glib2-devel-debuginfocentos-upgrade-glib2-famcentos-upgrade-glib2-fam-debuginfocentos-upgrade-glib2-testscentos-upgrade-glib2-tests-debuginfocentos-upgrade-webkit2gtk3centos-upgrade-webkit2gtk3-debuginfocentos-upgrade-webkit2gtk3-debugsourcecentos-upgrade-webkit2gtk3-develcentos-upgrade-webkit2gtk3-devel-debuginfocentos-upgrade-webkit2gtk3-jsccentos-upgrade-webkit2gtk3-jsc-debuginfocentos-upgrade-webkit2gtk3-jsc-develcentos-upgrade-webkit2gtk3-jsc-devel-debuginfo
References
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.