CVE-2019-8720: WebKitGTK Memory Corruption Vulnerability
First published: Mon Sep 07 2020(Updated: )
WebKitGTK contains a memory corruption vulnerability which can allow an attacker to perform remote code execution.
Credit: secalert@redhat.com secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/webkitgtk | <2.26.0 | 2.26.0 |
| Oracle Webkitgtk4-jsc | ||
| Oracle Webkitgtk4-jsc | <2.26.0 | |
| WPE WebKit | <2.26.0 | |
| Red Hat CodeReady Linux Builder | =8.0 | |
| Red Hat CodeReady Linux Builder | =8.4 | |
| Red Hat CodeReady Linux Builder | =8.6 | |
| Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support | =8.0 | |
| Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support | =8.4 | |
| Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support | =8.6 | |
| Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support | =8.0 | |
| Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support | =8.4 | |
| Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support | =8.6 | |
| Red Hat CodeReady Linux Builder for Power, little endian | =8.0 | |
| Red Hat CodeReady Linux Builder for Power, little endian | =8.4 | |
| Red Hat CodeReady Linux Builder for Power, little endian | =8.6 | |
| Red Hat Enterprise Linux | =8.0 | |
| Red Hat Enterprise Linux Desktop | =7.0 | |
| Red Hat Enterprise Linux Server EUS | =8.4 | |
| Red Hat Enterprise Linux Server EUS | =8.6 | |
| Red Hat Enterprise Linux | =8.0 | |
| Red Hat Enterprise Linux for ARM64 EUS | =8.4 | |
| Red Hat Enterprise Linux for ARM64 EUS | =8.6 | |
| Red Hat Enterprise Linux for IBM Z Systems | =7.0 | |
| Red Hat Enterprise Linux for IBM Z Systems | =8.0 | |
| Red Hat Enterprise Linux for IBM Z Systems (s390x) | =8.4 | |
| Red Hat Enterprise Linux for IBM Z Systems (s390x) | =8.6 | |
| Red Hat Enterprise Linux for Power, big endian | =7.0 | |
| Red Hat Enterprise Linux for Power, little endian | =7.0 | |
| Red Hat Enterprise Linux for Power, little endian | =8.0 | |
| Red Hat Enterprise Linux for Power, little endian - Extended Update Support | =8.4 | |
| Red Hat Enterprise Linux for Power, little endian - Extended Update Support | =8.6 | |
| Red Hat Enterprise Linux for Scientific Computing | =7.0 | |
| Red Hat Enterprise Linux Server | =7.0 | |
| Red Hat Enterprise Linux Server | =8.4 | |
| Red Hat Enterprise Linux Server | =8.6 | |
| Red Hat Enterprise Linux for SAP Applications for Power, little endian - Extended Update Support | =8.4 | |
| Red Hat Enterprise Linux for SAP Applications for Power, little endian - Extended Update Support | =8.6 | |
| Red Hat Enterprise Linux Server | =8.4 | |
| Red Hat Enterprise Linux Server | =8.6 | |
| Red Hat Enterprise Linux Server Update Services for SAP Solutions | =8.4 | |
| Red Hat Enterprise Linux Server Update Services for SAP Solutions | =8.6 | |
| Red Hat Enterprise Linux Workstation | =7.0 | |
| <2.26.0 | ||
| <2.26.0 | ||
| =8.0 | ||
| =8.4 | ||
| =8.6 | ||
| =8.0 | ||
| =8.4 | ||
| =8.6 | ||
| =8.0 | ||
| =8.4 | ||
| =8.6 | ||
| =8.0 | ||
| =8.4 | ||
| =8.6 | ||
| =8.0 | ||
| =7.0 | ||
| =8.4 | ||
| =8.6 | ||
| =8.0 | ||
| =8.4 | ||
| =8.6 | ||
| =7.0 | ||
| =8.0 | ||
| =8.4 | ||
| =8.6 | ||
| =7.0 | ||
| =7.0 | ||
| =8.0 | ||
| =8.4 | ||
| =8.6 | ||
| =7.0 | ||
| =7.0 | ||
| =8.4 | ||
| =8.6 | ||
| =8.4 | ||
| =8.6 | ||
| =8.4 | ||
| =8.6 | ||
| =8.4 | ||
| =8.6 | ||
| =7.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://bugzilla.redhat.com/show_bug.cgi?id=1876611
- https://webkitgtk.org/security/WSA-2019-0005.html
- https://access.redhat.com/security/cve/CVE-2019-8720
- https://access.redhat.com/errata/RHSA-2020:4035
- https://access.redhat.com/security/cve/cve-2019-8720
- https://access.redhat.com/errata/RHSA-2020:4451
- https://nvd.nist.gov/vuln/detail/CVE-2019-8720
- agent/type
- agent/first-publish-date
- agent/title
- agent/severity
- agent/weakness
- agent/description
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2019-8720
- agent/software-canonical-lookup
- agent/references
- agent/event
- agent/author
- agent/source
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- exploited/true
- collector/cisa-known-exploited
- source/CISA
- agent/software-canonical-lookup-request
- collector/nvd-cve
- source/NVD
- collector/nvd-index
- collector/nvd-api
- package-manager/redhat
- vendor/webkitgtk
- canonical/oracle webkitgtk4-jsc
- vendor/wpewebkit
- canonical/wpe webkit
- vendor/redhat
- canonical/red hat codeready linux builder
- version/red hat codeready linux builder/8.0
- version/red hat codeready linux builder/8.4
- version/red hat codeready linux builder/8.6
- canonical/red hat codeready linux builder for arm 64 - extended update support
- version/red hat codeready linux builder for arm 64 - extended update support/8.0
- version/red hat codeready linux builder for arm 64 - extended update support/8.4
- version/red hat codeready linux builder for arm 64 - extended update support/8.6
- canonical/red hat codeready linux builder for ibm z systems - extended update support
- version/red hat codeready linux builder for ibm z systems - extended update support/8.0
- version/red hat codeready linux builder for ibm z systems - extended update support/8.4
- version/red hat codeready linux builder for ibm z systems - extended update support/8.6
- canonical/red hat codeready linux builder for power, little endian
- version/red hat codeready linux builder for power, little endian/8.0
- version/red hat codeready linux builder for power, little endian/8.4
- version/red hat codeready linux builder for power, little endian/8.6
- canonical/red hat enterprise linux
- version/red hat enterprise linux/8.0
- canonical/red hat enterprise linux desktop
- version/red hat enterprise linux desktop/7.0
- canonical/red hat enterprise linux server eus
- version/red hat enterprise linux server eus/8.4
- version/red hat enterprise linux server eus/8.6
- canonical/red hat enterprise linux for arm64 eus
- version/red hat enterprise linux for arm64 eus/8.4
- version/red hat enterprise linux for arm64 eus/8.6
- canonical/red hat enterprise linux for ibm z systems
- version/red hat enterprise linux for ibm z systems/7.0
- version/red hat enterprise linux for ibm z systems/8.0
- canonical/red hat enterprise linux for ibm z systems (s390x)
- version/red hat enterprise linux for ibm z systems (s390x)/8.4
- version/red hat enterprise linux for ibm z systems (s390x)/8.6
- canonical/red hat enterprise linux for power, big endian
- version/red hat enterprise linux for power, big endian/7.0
- canonical/red hat enterprise linux for power, little endian
- version/red hat enterprise linux for power, little endian/7.0
- version/red hat enterprise linux for power, little endian/8.0
- canonical/red hat enterprise linux for power, little endian - extended update support
- version/red hat enterprise linux for power, little endian - extended update support/8.4
- version/red hat enterprise linux for power, little endian - extended update support/8.6
- canonical/red hat enterprise linux for scientific computing
- version/red hat enterprise linux for scientific computing/7.0
- canonical/red hat enterprise linux server
- version/red hat enterprise linux server/7.0
- version/red hat enterprise linux server/8.4
- version/red hat enterprise linux server/8.6
- canonical/red hat enterprise linux for sap applications for power, little endian - extended update support
- version/red hat enterprise linux for sap applications for power, little endian - extended update support/8.4
- version/red hat enterprise linux for sap applications for power, little endian - extended update support/8.6
- canonical/red hat enterprise linux server update services for sap solutions
- version/red hat enterprise linux server update services for sap solutions/8.4
- version/red hat enterprise linux server update services for sap solutions/8.6
- canonical/red hat enterprise linux workstation
- version/red hat enterprise linux workstation/7.0