{"id":"CVE-2022-30293","details":"In WebKitGTK through 2.36.0 (and WPE WebKit), there is a heap-based buffer overflow in WebCore::TextureMapperLayer::setContentsLayer in WebCore/platform/graphics/texmap/TextureMapperLayer.cpp.","modified":"2026-03-15T22:45:07.036767Z","published":"2022-05-06T05:15:07.017Z","related":["ALSA-2022:7704","ALSA-2022:8054","SUSE-SU-2022:2030-1","SUSE-SU-2022:2071-1","SUSE-SU-2022:2072-1","SUSE-SU-2022:2089-1"],"references":[{"type":"ADVISORY","url":"http://www.openwall.com/lists/oss-security/2022/05/30/1"},{"type":"ADVISORY","url":"https://security.gentoo.org/glsa/202208-39"},{"type":"ADVISORY","url":"https://www.debian.org/security/2022/dsa-5154"},{"type":"ADVISORY","url":"https://www.debian.org/security/2022/dsa-5155"},{"type":"FIX","url":"https://bugs.webkit.org/show_bug.cgi?id=237187"},{"type":"EVIDENCE","url":"https://github.com/ChijinZ/security_advisories/tree/master/webkitgtk-2.36.0"}],"affected":[{"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"2.36.0"}]},{"events":[{"introduced":"0"},{"last_affected":"10.0"}]},{"events":[{"introduced":"0"},{"last_affected":"11.0"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-30293.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"}]}