Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:rpm/redhat/webkit2gtk3@2.46.1-2?arch=el9_4
purl pkg:rpm/redhat/webkit2gtk3@2.46.1-2?arch=el9_4
Next non-vulnerable version None.
Latest non-vulnerable version None.
Risk 4.0
Vulnerabilities affecting this package (20)
Vulnerability Summary Fixed by
VCID-1164-uckc-qfbs
Aliases:
CVE-2024-40789
webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash There are no reported fixed by versions.
VCID-1xcs-fpk3-nyg4
Aliases:
CVE-2024-44187
Multiple vulnerabilities have been discovered in WebKitGTK+, the worst of which can lead to execution of arbitary code. There are no reported fixed by versions.
VCID-3daw-8nh6-dfcq
Aliases:
CVE-2024-44185
Multiple vulnerabilities have been discovered in WebKitGTK+, the worst of which can lead to execution of arbitary code. There are no reported fixed by versions.
VCID-455j-vpxx-yudd
Aliases:
CVE-2024-23284
Multiple vulnerabilities have been discovered in WebKitGTK+, the worst of which could lead to arbitrary code execution There are no reported fixed by versions.
VCID-8utu-penp-rbax
Aliases:
CVE-2024-23280
Multiple vulnerabilities have been discovered in WebKitGTK+, the worst of which could lead to arbitrary code execution There are no reported fixed by versions.
VCID-9dnz-1f32-gfdp
Aliases:
CVE-2025-43480
webkitgtk: A malicious website may exfiltrate data cross-origin There are no reported fixed by versions.
VCID-ceyb-j3sq-27fh
Aliases:
CVE-2024-27856
webkitgtk: Processing a file may lead to unexpected app termination or arbitrary code execution There are no reported fixed by versions.
VCID-gjvy-329h-dkgp
Aliases:
CVE-2024-27838
webkitgtk: A maliciously crafted webpage may be able to fingerprint the user There are no reported fixed by versions.
VCID-gn1n-fjzp-hqe2
Aliases:
CVE-2023-43010
webkitgtk: Processing maliciously crafted web content may lead to memory corruption There are no reported fixed by versions.
VCID-h7uu-gj11-a3er
Aliases:
CVE-2024-23263
Multiple vulnerabilities have been discovered in WebKitGTK+, the worst of which could lead to arbitrary code execution There are no reported fixed by versions.
VCID-kp4m-h6ua-h7dm
Aliases:
CVE-2024-40776
webkitgtk: webkit2gtk: Use after free may lead to Remote Code Execution There are no reported fixed by versions.
VCID-pg5b-3vcj-7bav
Aliases:
CVE-2024-27851
webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution There are no reported fixed by versions.
VCID-pyek-9fpp-nudy
Aliases:
CVE-2024-40866
Multiple vulnerabilities have been discovered in WebKitGTK+, the worst of which can lead to execution of arbitary code. There are no reported fixed by versions.
VCID-q3jv-e392-5fef
Aliases:
CVE-2024-40780
webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking There are no reported fixed by versions.
VCID-qvy2-8161-eycu
Aliases:
CVE-2024-40782
webkitgtk: webkit2gtk: Use-after-free was addressed with improved memory management There are no reported fixed by versions.
VCID-u1sp-38g8-xfan
Aliases:
CVE-2024-4558
Multiple vulnerabilities have been discovered in QtWebEngine, the worst of which could lead to arbitrary code execution. There are no reported fixed by versions.
VCID-v1he-6exf-b7dt
Aliases:
CVE-2024-27820
webkitgtk: Processing web content may lead to arbitrary code execution There are no reported fixed by versions.
VCID-vqd7-gwyv-vfaf
Aliases:
CVE-2024-23254
Multiple vulnerabilities have been discovered in WebKitGTK+, the worst of which could lead to arbitrary code execution There are no reported fixed by versions.
VCID-y388-97uu-3qax
Aliases:
CVE-2024-54534
webkit: Processing maliciously crafted web content may lead to memory corruption There are no reported fixed by versions.
VCID-y77v-hwy6-hfhy
Aliases:
CVE-2024-40779
webkitgtk: webkit2gtk: Out-of-bounds read was addressed with improved bounds checking There are no reported fixed by versions.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-01T13:49:13.980793+00:00 RedHat Importer Affected by VCID-455j-vpxx-yudd https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-23284.json 38.0.0
2026-04-01T13:49:13.916610+00:00 RedHat Importer Affected by VCID-8utu-penp-rbax https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-23280.json 38.0.0
2026-04-01T13:49:13.854229+00:00 RedHat Importer Affected by VCID-h7uu-gj11-a3er https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-23263.json 38.0.0
2026-04-01T13:49:13.790352+00:00 RedHat Importer Affected by VCID-vqd7-gwyv-vfaf https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-23254.json 38.0.0
2026-04-01T13:47:49.674186+00:00 RedHat Importer Affected by VCID-u1sp-38g8-xfan https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-4558.json 38.0.0
2026-04-01T13:46:05.292530+00:00 RedHat Importer Affected by VCID-qvy2-8161-eycu https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-40782.json 38.0.0
2026-04-01T13:46:05.036003+00:00 RedHat Importer Affected by VCID-y77v-hwy6-hfhy https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-40779.json 38.0.0
2026-04-01T13:46:04.795631+00:00 RedHat Importer Affected by VCID-q3jv-e392-5fef https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-40780.json 38.0.0
2026-04-01T13:46:04.536639+00:00 RedHat Importer Affected by VCID-1164-uckc-qfbs https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-40789.json 38.0.0
2026-04-01T13:45:58.288179+00:00 RedHat Importer Affected by VCID-kp4m-h6ua-h7dm https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-40776.json 38.0.0
2026-04-01T13:45:11.750847+00:00 RedHat Importer Affected by VCID-pyek-9fpp-nudy https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-40866.json 38.0.0
2026-04-01T13:45:03.601860+00:00 RedHat Importer Affected by VCID-1xcs-fpk3-nyg4 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-44187.json 38.0.0
2026-04-01T13:45:03.502662+00:00 RedHat Importer Affected by VCID-pg5b-3vcj-7bav https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-27851.json 38.0.0
2026-04-01T13:45:03.254008+00:00 RedHat Importer Affected by VCID-gjvy-329h-dkgp https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-27838.json 38.0.0
2026-04-01T13:45:02.943795+00:00 RedHat Importer Affected by VCID-v1he-6exf-b7dt https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-27820.json 38.0.0
2026-04-01T13:44:15.116057+00:00 RedHat Importer Affected by VCID-3daw-8nh6-dfcq https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-44185.json 38.0.0
2026-04-01T13:43:37.577787+00:00 RedHat Importer Affected by VCID-y388-97uu-3qax https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-54534.json 38.0.0
2026-04-01T13:43:10.057684+00:00 RedHat Importer Affected by VCID-ceyb-j3sq-27fh https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-27856.json 38.0.0
2026-04-01T13:34:56.556992+00:00 RedHat Importer Affected by VCID-9dnz-1f32-gfdp https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-43480.json 38.0.0
2026-04-01T13:30:26.473397+00:00 RedHat Importer Affected by VCID-gn1n-fjzp-hqe2 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-43010.json 38.0.0