On Wed, Sep 6, 2023 at 9:46 PM Michael Catanzaro
wrote:
> On Wed, Sep 6 2023 at 04:23:17 PM +0800, 不会弹吉他的KK
> wrote:
> > My question is
> > 1. Does webkitgtk 2.38.6 is vulnerable to CVE-2023-32435?
>
> No clue, sorry.
>
> > 2. If YES, how to deal the patc
Hi All,
CVE-2023-32435 has been fixed in webkitgtk 2.40.0. According to
https://bugs.webkit.org/show_bug.cgi?id=251890, the commit is at
https://github.com/WebKit/WebKit/commit/50c7aaec2f53ab3b960f1b299aad5009df6f1967
.
It patches 3 files, but 2 of them are created/added in 2.40.0 and do NOT
exist
Hi Michael,
Thanks a lot!.
Kai
On Wed, Aug 30, 2023 at 11:42 PM Michael Catanzaro
wrote:
>
> Hi, see: https://commits.webkit.org/260455@main
>
>
>
___
webkit-gtk mailing list
webkit-gtk@lists.webkit.org
Hi MIchael,
Would you like to share the fix commit of CVE-2023-23529, please? It is
handled by https://bugs.webkit.org/show_bug.cgi?id=251944 which is still
not pulibc.
Sorry for duplicate email that previous is rejected by maillist.
Thanks,
Kai
On Wed, May 31, 2023 at 10:17 PM Michael
On Wed, Mar 22, 2023 at 7:01 PM Michael Catanzaro
wrote:
> On Wed, Mar 22 2023 at 11:26:56 AM +0200, Adrian Perez de Castro
> wrote:
> > Recently advisories published by Apple include the Bugzilla issue
> > numbers
> > (e.g. [1]), so with some work you can find out which commits
> > correspond
Hi All,
I am working on Yocto project. In last LTS Yocto release the version of
webkitgtk is 2.36.8.
And there are more than 15 CVE issues for 2.36.8 till now. I checked the
git log and
"WebKitGTK and WPE WebKit Security Advisory" pages that I only got info
that which CVE
has been fixed in which
