2.13.4

DATE	CVE	VULNERABILITY TITLE	RISK
2021-10-20	CVE-2021-42762	BubblewrapLauncher.cpp in WebKitGTK and WPE WebKit before 2.34.1 allows a limited sandbox bypass that allows a sandboxed process to trick host processes into thinking the sandboxed process is not confined by the sandbox, by abusing VFS syscalls that manipulate its filesystem namespace. local low complexity webkitgtk wpewebkit fedoraproject debian	5.3
2021-04-02	CVE-2021-1870	A logic issue was addressed with improved restrictions. network low complexity apple webkitgtk fedoraproject critical	9.8
2021-04-02	CVE-2021-1801	This issue was addressed with improved iframe sandbox enforcement. network low complexity apple fedoraproject webkitgtk	6.5
2021-04-02	CVE-2021-1799	A port redirection issue was addressed with additional port validation. network low complexity apple fedoraproject webkitgtk	6.5
2021-04-02	CVE-2021-1789	Type Confusion vulnerability in multiple products A type confusion issue was addressed with improved state handling. network low complexity apple fedoraproject webkitgtk CWE-843	8.8
2021-04-02	CVE-2021-1765	This issue was addressed with improved iframe sandbox enforcement. network low complexity apple fedoraproject webkitgtk	6.5
2021-04-02	CVE-2020-29623	"Clear History and Website Data" did not clear the history. local low complexity apple fedoraproject webkitgtk	3.3
2020-12-08	CVE-2020-27918	Use After Free vulnerability in multiple products A use after free issue was addressed with improved memory management. local low complexity apple fedoraproject debian webkitgtk CWE-416	7.8
2020-07-14	CVE-2020-13753	Improper Input Validation vulnerability in multiple products The bubblewrap sandbox of WebKitGTK and WPE WebKit, prior to 2.28.3, failed to properly block access to CLONE_NEWUSER and the TIOCSTI ioctl. network low complexity wpewebkit webkitgtk fedoraproject debian canonical opensuse CWE-20 critical	10.0
2020-04-17	CVE-2020-11793	Use After Free vulnerability in multiple products A use-after-free issue exists in WebKitGTK before 2.28.1 and WPE WebKit before 2.28.1 via crafted web content that allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash). network low complexity wpewebkit webkitgtk canonical fedoraproject opensuse CWE-416	8.8