admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-08-04 08:44:25 +00:00
Code Issues Packages Projects Releases Wiki Activity
cvelist/2021/42xxx/CVE-2021-42762.json
Anthony Singleton 938debeed0 Revert "November 2021 Patch Tuesday" 
This reverts commit df296d9e014bf68ef22c0583c98da3fbe42ea316.
2021-11-17 15:47:33 -05:00

112 lines
4.5 KiB
JSON
Raw Blame History

{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2021-42762",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "BubblewrapLauncher.cpp in WebKitGTK and WPE WebKit before 2.34.1 allows a limited sandbox bypass that allows a sandboxed process to trick host processes into thinking the sandboxed process is not confined by the sandbox, by abusing VFS syscalls that manipulate its filesystem namespace. The impact is limited to host services that create UNIX sockets that WebKit mounts inside its sandbox, and the sandboxed process remains otherwise confined. NOTE: this is similar to CVE-2021-41133."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://github.com/flatpak/flatpak/security/advisories/GHSA-67h7-w3jq-vh4q",
"refsource": "MISC",
"name": "https://github.com/flatpak/flatpak/security/advisories/GHSA-67h7-w3jq-vh4q"
},
{
"url": "https://bugs.webkit.org/show_bug.cgi?id=231479",
"refsource": "MISC",
"name": "https://bugs.webkit.org/show_bug.cgi?id=231479"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20211026 WebKitGTK and WPE WebKit Security Advisory WSA-2021-0006",
"url": "http://www.openwall.com/lists/oss-security/2021/10/26/9"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20211027 Re: WebKitGTK and WPE WebKit Security Advisory WSA-2021-0006",
"url": "http://www.openwall.com/lists/oss-security/2021/10/27/1"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20211027 Re: WebKitGTK and WPE WebKit Security Advisory WSA-2021-0006",
"url": "http://www.openwall.com/lists/oss-security/2021/10/27/2"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20211027 Re: WebKitGTK and WPE WebKit Security Advisory WSA-2021-0006",
"url": "http://www.openwall.com/lists/oss-security/2021/10/27/4"
},
{
"refsource": "DEBIAN",
"name": "DSA-4995",
"url": "https://www.debian.org/security/2021/dsa-4995"
},
{
"refsource": "DEBIAN",
"name": "DSA-4996",
"url": "https://www.debian.org/security/2021/dsa-4996"
},
{
"refsource": "FEDORA",
"name": "FEDORA-2021-db6ebb2d68",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/M5J2LZQTDX53DNSKSGU7TQYCO2HKSTY4/"
},
{
"refsource": "FEDORA",
"name": "FEDORA-2021-131360fa9a",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ON5SDVVPVPCAGFPW2GHYATZVZYLPW2L4/"
},
{
"refsource": "FEDORA",
"name": "FEDORA-2021-483d896d1d",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/H6MGXCX7P5AHWOQ6IRT477UKT7IS4DAD/"
}
]
}
}
Reference in New Issue View Git Blame Copy Permalink