Stay Connected:

CVE-2020-11793

CVE Details

Release Date:2020-04-17

Description


A use-after-free issue exists in WebKitGTK before 2.28.1 and WPE WebKit before 2.28.1 via crafted web content that allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash).

See more information about CVE-2020-11793 from MITRE CVE dictionary and NIST NVD


CVSS v3.0 metrics


NOTE: The following CVSS v3.0 metrics and score provided are preliminary and subject to review.

Base Score: 8.8 Base Metrics: AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Access Vector: Network Attack Complexity: Low
Privileges Required: None User Interaction: Required
Scope: Unchanged Confidentiality Impact: High
Integrity Impact: High Availability Impact: High

Errata information


PlatformErrataRelease Date
Oracle Linux version 7 (webkitgtk4)ELSA-2020-40352020-10-06
Oracle Linux version 8 (LibRaw)ELSA-2020-44512020-11-10
Oracle Linux version 8 (PackageKit)ELSA-2020-44512020-11-10
Oracle Linux version 8 (dleyna-renderer)ELSA-2020-44512020-11-10
Oracle Linux version 8 (frei0r-plugins)ELSA-2020-44512020-11-10
Oracle Linux version 8 (gdm)ELSA-2020-44512020-11-10
Oracle Linux version 8 (gnome-control-center)ELSA-2020-44512020-11-10
Oracle Linux version 8 (gnome-photos)ELSA-2020-44512020-11-10
Oracle Linux version 8 (gnome-remote-desktop)ELSA-2020-44512020-11-10
Oracle Linux version 8 (gnome-session)ELSA-2020-44512020-11-10
Oracle Linux version 8 (gnome-settings-daemon)ELSA-2020-44512020-11-10
Oracle Linux version 8 (gnome-shell)ELSA-2020-44512020-11-10
Oracle Linux version 8 (gnome-shell-extensions)ELSA-2020-44512020-11-10
Oracle Linux version 8 (gnome-terminal)ELSA-2020-44512020-11-10
Oracle Linux version 8 (gsettings-desktop-schemas)ELSA-2020-44512020-11-10
Oracle Linux version 8 (gtk-doc)ELSA-2020-44512020-11-10
Oracle Linux version 8 (gtk3)ELSA-2020-44512020-11-10
Oracle Linux version 8 (gvfs)ELSA-2020-44512020-11-10
Oracle Linux version 8 (libsoup)ELSA-2020-44512020-11-10
Oracle Linux version 8 (mutter)ELSA-2020-44512020-11-10
Oracle Linux version 8 (nautilus)ELSA-2020-44512020-11-10
Oracle Linux version 8 (pipewire)ELSA-2020-44512020-11-10
Oracle Linux version 8 (pipewire0.2)ELSA-2020-44512020-11-10
Oracle Linux version 8 (potrace)ELSA-2020-44512020-11-10
Oracle Linux version 8 (pygobject3)ELSA-2020-44512020-11-10
Oracle Linux version 8 (tracker)ELSA-2020-44512020-11-10
Oracle Linux version 8 (vte291)ELSA-2020-44512020-11-10
Oracle Linux version 8 (webkit2gtk3)ELSA-2020-44512020-11-10
Oracle Linux version 8 (webrtc-audio-processing)ELSA-2020-44512020-11-10
Oracle Linux version 8 (xdg-desktop-portal)ELSA-2020-44512020-11-10
Oracle Linux version 8 (xdg-desktop-portal-gtk)ELSA-2020-44512020-11-10



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights