FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2025-01-14 21:31:10 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
c6f03ea6-12de-11ef-83d8-4ccc6adda413qt6-webengine -- Multiple vulnerabilities

Qt qtwebengine-chromium repo reports:

Backports for 16 security bugs in Chromium:

  • CVE-2024-2625: Object lifecycle issue in V8
  • CVE-2024-2626: Out of bounds read in Swiftshader
  • CVE-2024-2885: Use after free in Dawn
  • CVE-2024-2887: Type Confusion in WebAssembly
  • CVE-2024-3157: Out of bounds write in Compositing
  • CVE-2024-3159: Out of bounds memory access in V8
  • CVE-2024-3516: Heap buffer overflow in ANGLE
  • CVE-2024-3837: Use after free in QUIC
  • CVE-2024-3839: Out of bounds read in Fonts
  • CVE-2024-3914: Use after free in V8
  • CVE-2024-3840: Insufficient policy enforcement in Site Isolation
  • CVE-2024-4058: Type Confusion in ANGLE
  • CVE-2024-4060: Use after free in Dawn
  • CVE-2024-4331: Use after free in Picture In Picture
  • CVE-2024-4368: Use after free in Dawn
  • CVE-2024-4671: Use after free in Visuals

Discovery 2024-04-03
Entry 2024-05-15
qt6-webengine
< 6.7.0

CVE-2024-2625
CVE-2024-2626
CVE-2024-2885
CVE-2024-2887
CVE-2024-3157
CVE-2024-3159
CVE-2024-3516
CVE-2024-3837
CVE-2024-3839
CVE-2024-3914
CVE-2024-3840
CVE-2024-4058
CVE-2024-4060
CVE-2024-4331
CVE-2024-4368
CVE-2024-4671
https://code.qt.io/cgit/qt/qtwebengine-chromium.git/log/?h=118-based