{"id":"RHSA-2023:2834","summary":"Red Hat Security Advisory: webkit2gtk3 security and bug fix update","modified":"2026-01-14T11:05:03.839854Z","published":"2024-09-16T09:51:17Z","upstream":["CVE-2022-32886","CVE-2022-32888","CVE-2022-32923","CVE-2022-42799","CVE-2022-42823","CVE-2022-42824","CVE-2022-42826","CVE-2022-42852","CVE-2022-42863","CVE-2022-42867","CVE-2022-46691","CVE-2022-46692","CVE-2022-46698","CVE-2022-46699","CVE-2022-46700","CVE-2022-48503","CVE-2023-23517","CVE-2023-23518","CVE-2023-25358","CVE-2023-25360","CVE-2023-25361","CVE-2023-25362","CVE-2023-25363"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2023:2834"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#important"},{"type":"ARTICLE","url":"https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.8_release_notes/index"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2127468"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2128643"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2140501"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2140502"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2140503"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2140504"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2140505"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2150970"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2156986"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2156987"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2156989"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2156990"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2156991"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2156992"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2156993"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2156994"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2167715"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2167716"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2167717"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2175099"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2175101"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2175103"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2175105"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2175107"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_2834.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-32886"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-32886"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-32886"},{"type":"ARTICLE","url":"https://webkitgtk.org/security/WSA-2022-0009.html"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-32888"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-32888"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-32888"},{"type":"ARTICLE","url":"https://webkitgtk.org/security/WSA-2022-0010.html"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-32923"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-32923"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-32923"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-42799"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-42799"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-42799"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-42823"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-42823"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-42823"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-42824"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-42824"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-42824"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-42826"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-42826"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-42826"},{"type":"ARTICLE","url":"https://webkitgtk.org/security/WSA-2023-0001.html"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-42852"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-42852"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-42852"},{"type":"ARTICLE","url":"https://webkitgtk.org/security/WSA-2022-0011.html"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-42863"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-42863"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-42863"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-42867"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-42867"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-42867"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-46691"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-46691"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-46691"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-46692"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-46692"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-46692"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-46698"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-46698"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-46698"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-46699"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-46699"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-46699"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-46700"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-46700"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-46700"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-48503"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2218623"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-48503"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-48503"},{"type":"ARTICLE","url":"https://www.cisa.gov/known-exploited-vulnerabilities-catalog"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-23517"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-23517"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-23517"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-23518"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-23518"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-23518"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-25358"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-25358"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-25358"},{"type":"ARTICLE","url":"https://bugs.webkit.org/show_bug.cgi?id=242683"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-25360"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-25360"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-25360"},{"type":"ARTICLE","url":"https://bugs.webkit.org/show_bug.cgi?id=242686"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-25361"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-25361"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-25361"},{"type":"ARTICLE","url":"https://bugs.webkit.org/show_bug.cgi?id=244249"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-25362"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-25362"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-25362"},{"type":"ARTICLE","url":"https://bugs.webkit.org/show_bug.cgi?id=244802"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-25363"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-25363"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-25363"},{"type":"ARTICLE","url":"https://bugs.webkit.org/show_bug.cgi?id=242684"}],"affected":[{"package":{"name":"webkit2gtk3","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/webkit2gtk3"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.38.5-1.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:2834.json"}},{"package":{"name":"webkit2gtk3-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/webkit2gtk3-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.38.5-1.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:2834.json"}},{"package":{"name":"webkit2gtk3-debugsource","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/webkit2gtk3-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.38.5-1.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:2834.json"}},{"package":{"name":"webkit2gtk3-devel","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/webkit2gtk3-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.38.5-1.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:2834.json"}},{"package":{"name":"webkit2gtk3-devel-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/webkit2gtk3-devel-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.38.5-1.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:2834.json"}},{"package":{"name":"webkit2gtk3-jsc","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/webkit2gtk3-jsc"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.38.5-1.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:2834.json"}},{"package":{"name":"webkit2gtk3-jsc-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.38.5-1.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:2834.json"}},{"package":{"name":"webkit2gtk3-jsc-devel","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/webkit2gtk3-jsc-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.38.5-1.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:2834.json"}},{"package":{"name":"webkit2gtk3-jsc-devel-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.38.5-1.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:2834.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}]}