WebKitGTK+: Multiple vulnerabilities

WebKitGTK+: Multiple vulnerabilities Multiple vulnerabilities have been discovered in WebKitGTK+, the worst of which may lead to arbitrary code execution. WebkitGTK 2017-12-14 2017-12-14 637076 remote 2.18.3 2.18.3

WebKitGTK+ is a full-featured port of the WebKit rendering engine, suitable for projects requiring any kind of web integration, from hybrid HTML/CSS applications to full-fledged web browsers.

Multiple vulnerabilities have been discovered in WebKitGTK+. Please review the referenced CVE identifiers for details.

By enticing a victim to visit maliciously crafted web content, a remote attacker could execute arbitrary code or cause a denial of service condition.

There are no known workarounds at this time.

All WebKitGTK+ users should upgrade to the latest version:


      # emerge --sync
      # emerge --ask --oneshot --verbose ">=net-libs/webkit-gtk-2.18.3"

CVE-2017-13783 CVE-2017-13784 CVE-2017-13785 CVE-2017-13788 CVE-2017-13791 CVE-2017-13792 CVE-2017-13793 CVE-2017-13794 CVE-2017-13795 CVE-2017-13796 CVE-2017-13798 CVE-2017-13802 CVE-2017-13803 jmbailey jmbailey