OESA-2023-1175

See a problem?
Please try reporting it to the source first.

Source

https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2023-1175

Import Source

https://repo.openeuler.org/security/data/osv/OESA-2023-1175.json

JSON Data

https://api.test.osv.dev/v1/vulns/OESA-2023-1175

Upstream

CVE-2023-26081

Published

2023-03-17T11:05:04Z

Modified

2025-08-12T05:18:58.578535Z

Summary

epiphany security update

Details

Epiphany is the web browser for the GNOME desktop. Its goal is to be simple and easy to use. Epiphany ties together many GNOME components in order to let you focus on the Web content, instead of the browser application.

Security Fix(es):

In Epiphany (aka GNOME Web) through 43.0, untrusted web content can trick users into exfiltrating passwords, because autofill occurs in sandboxed contexts.(CVE-2023-26081)

Database specific

{
    "severity": "High"
}

References

Affected packages

openEuler:22.03-LTS-SP1 / epiphany

Package

Name: epiphany
Purl: pkg:rpm/openEuler/epiphany&distro=openEuler-22.03-LTS-SP1

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

40.6-3.oe2203sp1

Ecosystem specific

{
    "x86_64": [
        "epiphany-runtime-40.6-3.oe2203sp1.x86_64.rpm",
        "epiphany-debuginfo-40.6-3.oe2203sp1.x86_64.rpm",
        "epiphany-debugsource-40.6-3.oe2203sp1.x86_64.rpm",
        "epiphany-40.6-3.oe2203sp1.x86_64.rpm"
    ],
    "src": [
        "epiphany-40.6-3.oe2203sp1.src.rpm"
    ],
    "aarch64": [
        "epiphany-40.6-3.oe2203sp1.aarch64.rpm",
        "epiphany-runtime-40.6-3.oe2203sp1.aarch64.rpm",
        "epiphany-debugsource-40.6-3.oe2203sp1.aarch64.rpm",
        "epiphany-debuginfo-40.6-3.oe2203sp1.aarch64.rpm"
    ]
}