CVE-2023-2203
A flaw was found in the WebKitGTK package. An improper input validation issue may lead to a use-after-free vulnerability. This flaw allows attackers with network access to pass specially crafted web content files, causing a denial of service or arbitrary code execution. This CVE exists because of a CVE-2023-28205 security regression for the WebKitGTK package in Red Hat Enterprise Linux 8.8 and Red Hat Enterprise Linux 9.2.
| Software | From | Fixed in |
|---|---|---|
| webkitgtk / webkit2gtk3 | 2.38.5-1.el9 | 2.38.5-1.el9.x |
| webkitgtk / webkit2gtk3 | 2.38.5-1.el8 | 2.38.5-1.el8.x |
| redhat / enterprise_linux | 8.0 | 8.0.x |
| redhat / enterprise_linux | 9.0 | 9.0.x |
| redhat / enterprise_linux_server_tus | 8.8 | 8.8.x |
| redhat / enterprise_linux_server_aus | 8.8 | 8.8.x |
| redhat / enterprise_linux_eus | 8.8 | 8.8.x |
| redhat / enterprise_linux_server_aus | 9.2 | 9.2.x |
| redhat / enterprise_linux_eus | 9.2 | 9.2.x |
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime