WebKitGTK+: Multiple Vulnerabilities Several vulnerabilities have been found in WebKitGTK+, the worst of which can lead to remote code execution. webkit-gtk 2024-01-05 2024-01-05 907818 909663 910656 918087 918099 919290 remote 2.42.3 2.42.3 2.42.3 2.42.3

WebKitGTK+ is a full-featured port of the WebKit rendering engine, suitable for projects requiring any kind of web integration, from hybrid HTML/CSS applications to full-fledged web browsers.

Multiple vulnerabilities have been discovered in WebKitGTK+. Please review the CVE identifiers referenced below for details.

Please review the referenced CVE identifiers for details.

There is no known workaround at this time.

All WebKitGTK+ users should upgrade to the latest version:

# emerge --sync # emerge --ask --oneshot --verbose ">=net-libs/webkit-gtk-2.42.3" CVE-2023-28198 CVE-2023-28204 CVE-2023-32370 CVE-2023-32373 CVE-2023-32393 CVE-2023-32439 CVE-2023-37450 CVE-2023-38133 CVE-2023-38572 CVE-2023-38592 CVE-2023-38594 CVE-2023-38595 CVE-2023-38597 CVE-2023-38599 CVE-2023-38600 CVE-2023-38611 CVE-2023-40397 CVE-2023-42916 CVE-2023-42917 WSA-2023-0006 graaff graaff