A cookie management issue was addressed with improved state management. This issue is fixed in Safari 18.1.1, iOS 17.7.2 and iPadOS 17.7.2, macOS Sequoia 15.1.1, iOS 18.1.1 and iPadOS 18.1.1, visionOS 2.1.1. Processing maliciously crafted web content may lead to a cross site scripting attack. Apple is aware of a report that this issue may have been actively exploited on Intel-based Mac systems.
{ "priority_reason": "Listed in CISA Known Exploited Vulnerabilities Catalog", "binaries": [ { "binary_name": "gir1.2-javascriptcoregtk-4.0", "binary_version": "2.46.4-0ubuntu0.22.04.1" }, { "binary_name": "gir1.2-javascriptcoregtk-4.1", "binary_version": "2.46.4-0ubuntu0.22.04.1" }, { "binary_name": "gir1.2-javascriptcoregtk-6.0", "binary_version": "2.46.4-0ubuntu0.22.04.1" }, { "binary_name": "gir1.2-webkit-6.0", "binary_version": "2.46.4-0ubuntu0.22.04.1" }, { "binary_name": "gir1.2-webkit2-4.0", "binary_version": "2.46.4-0ubuntu0.22.04.1" }, { "binary_name": "gir1.2-webkit2-4.1", "binary_version": "2.46.4-0ubuntu0.22.04.1" }, { "binary_name": "libjavascriptcoregtk-4.0-18", "binary_version": "2.46.4-0ubuntu0.22.04.1" }, { "binary_name": "libjavascriptcoregtk-4.0-18-dbgsym", "binary_version": "2.46.4-0ubuntu0.22.04.1" }, { "binary_name": "libjavascriptcoregtk-4.0-bin", "binary_version": "2.46.4-0ubuntu0.22.04.1" }, { "binary_name": "libjavascriptcoregtk-4.0-bin-dbgsym", "binary_version": "2.46.4-0ubuntu0.22.04.1" }, { "binary_name": "libjavascriptcoregtk-4.0-dev", "binary_version": "2.46.4-0ubuntu0.22.04.1" }, { "binary_name": "libjavascriptcoregtk-4.1-0", "binary_version": "2.46.4-0ubuntu0.22.04.1" }, { "binary_name": "libjavascriptcoregtk-4.1-0-dbgsym", "binary_version": "2.46.4-0ubuntu0.22.04.1" }, { "binary_name": "libjavascriptcoregtk-4.1-dev", "binary_version": "2.46.4-0ubuntu0.22.04.1" }, { "binary_name": "libjavascriptcoregtk-6.0-1", "binary_version": "2.46.4-0ubuntu0.22.04.1" }, { "binary_name": "libjavascriptcoregtk-6.0-1-dbgsym", "binary_version": "2.46.4-0ubuntu0.22.04.1" }, { "binary_name": "libjavascriptcoregtk-6.0-dev", "binary_version": "2.46.4-0ubuntu0.22.04.1" }, { "binary_name": "libwebkit2gtk-4.0-37", "binary_version": "2.46.4-0ubuntu0.22.04.1" }, { "binary_name": "libwebkit2gtk-4.0-37-dbgsym", "binary_version": "2.46.4-0ubuntu0.22.04.1" }, { "binary_name": "libwebkit2gtk-4.0-dev", "binary_version": "2.46.4-0ubuntu0.22.04.1" }, { "binary_name": "libwebkit2gtk-4.0-doc", "binary_version": "2.46.4-0ubuntu0.22.04.1" }, { "binary_name": "libwebkit2gtk-4.1-0", "binary_version": "2.46.4-0ubuntu0.22.04.1" }, { "binary_name": "libwebkit2gtk-4.1-0-dbgsym", "binary_version": "2.46.4-0ubuntu0.22.04.1" }, { "binary_name": "libwebkit2gtk-4.1-dev", "binary_version": "2.46.4-0ubuntu0.22.04.1" }, { "binary_name": "libwebkitgtk-6.0-4", "binary_version": "2.46.4-0ubuntu0.22.04.1" }, { "binary_name": "libwebkitgtk-6.0-4-dbgsym", "binary_version": "2.46.4-0ubuntu0.22.04.1" }, { "binary_name": "libwebkitgtk-6.0-dev", "binary_version": "2.46.4-0ubuntu0.22.04.1" }, { "binary_name": "webkit2gtk-driver", "binary_version": "2.46.4-0ubuntu0.22.04.1" }, { "binary_name": "webkit2gtk-driver-dbgsym", "binary_version": "2.46.4-0ubuntu0.22.04.1" } ], "ubuntu_priority": "high", "availability": "No subscription required" }
{ "priority_reason": "Listed in CISA Known Exploited Vulnerabilities Catalog", "binaries": [ { "binary_name": "gir1.2-javascriptcoregtk-4.1", "binary_version": "2.46.4-0ubuntu0.24.10.1" }, { "binary_name": "gir1.2-javascriptcoregtk-6.0", "binary_version": "2.46.4-0ubuntu0.24.10.1" }, { "binary_name": "gir1.2-webkit-6.0", "binary_version": "2.46.4-0ubuntu0.24.10.1" }, { "binary_name": "gir1.2-webkit2-4.1", "binary_version": "2.46.4-0ubuntu0.24.10.1" }, { "binary_name": "libjavascriptcoregtk-4.0-bin", "binary_version": "2.46.4-0ubuntu0.24.10.1" }, { "binary_name": "libjavascriptcoregtk-4.1-0", "binary_version": "2.46.4-0ubuntu0.24.10.1" }, { "binary_name": "libjavascriptcoregtk-4.1-0-dbgsym", "binary_version": "2.46.4-0ubuntu0.24.10.1" }, { "binary_name": "libjavascriptcoregtk-4.1-dev", "binary_version": "2.46.4-0ubuntu0.24.10.1" }, { "binary_name": "libjavascriptcoregtk-6.0-1", "binary_version": "2.46.4-0ubuntu0.24.10.1" }, { "binary_name": "libjavascriptcoregtk-6.0-1-dbgsym", "binary_version": "2.46.4-0ubuntu0.24.10.1" }, { "binary_name": "libjavascriptcoregtk-6.0-dev", "binary_version": "2.46.4-0ubuntu0.24.10.1" }, { "binary_name": "libjavascriptcoregtk-bin", "binary_version": "2.46.4-0ubuntu0.24.10.1" }, { "binary_name": "libjavascriptcoregtk-bin-dbgsym", "binary_version": "2.46.4-0ubuntu0.24.10.1" }, { "binary_name": "libwebkit2gtk-4.0-doc", "binary_version": "2.46.4-0ubuntu0.24.10.1" }, { "binary_name": "libwebkit2gtk-4.1-0", "binary_version": "2.46.4-0ubuntu0.24.10.1" }, { "binary_name": "libwebkit2gtk-4.1-0-dbgsym", "binary_version": "2.46.4-0ubuntu0.24.10.1" }, { "binary_name": "libwebkit2gtk-4.1-dev", "binary_version": "2.46.4-0ubuntu0.24.10.1" }, { "binary_name": "libwebkitgtk-6.0-4", "binary_version": "2.46.4-0ubuntu0.24.10.1" }, { "binary_name": "libwebkitgtk-6.0-4-dbgsym", "binary_version": "2.46.4-0ubuntu0.24.10.1" }, { "binary_name": "libwebkitgtk-6.0-dev", "binary_version": "2.46.4-0ubuntu0.24.10.1" }, { "binary_name": "libwebkitgtk-doc", "binary_version": "2.46.4-0ubuntu0.24.10.1" }, { "binary_name": "webkit2gtk-driver", "binary_version": "2.46.4-0ubuntu0.24.10.1" }, { "binary_name": "webkitgtk-webdriver", "binary_version": "2.46.4-0ubuntu0.24.10.1" }, { "binary_name": "webkitgtk-webdriver-dbgsym", "binary_version": "2.46.4-0ubuntu0.24.10.1" } ], "ubuntu_priority": "high", "availability": "No subscription required" }
{ "priority_reason": "Listed in CISA Known Exploited Vulnerabilities Catalog", "binaries": [ { "binary_name": "gir1.2-javascriptcoregtk-4.1", "binary_version": "2.46.4-0ubuntu0.24.04.1" }, { "binary_name": "gir1.2-javascriptcoregtk-6.0", "binary_version": "2.46.4-0ubuntu0.24.04.1" }, { "binary_name": "gir1.2-webkit-6.0", "binary_version": "2.46.4-0ubuntu0.24.04.1" }, { "binary_name": "gir1.2-webkit2-4.1", "binary_version": "2.46.4-0ubuntu0.24.04.1" }, { "binary_name": "libjavascriptcoregtk-4.0-bin", "binary_version": "2.46.4-0ubuntu0.24.04.1" }, { "binary_name": "libjavascriptcoregtk-4.1-0", "binary_version": "2.46.4-0ubuntu0.24.04.1" }, { "binary_name": "libjavascriptcoregtk-4.1-0-dbgsym", "binary_version": "2.46.4-0ubuntu0.24.04.1" }, { "binary_name": "libjavascriptcoregtk-4.1-dev", "binary_version": "2.46.4-0ubuntu0.24.04.1" }, { "binary_name": "libjavascriptcoregtk-6.0-1", "binary_version": "2.46.4-0ubuntu0.24.04.1" }, { "binary_name": "libjavascriptcoregtk-6.0-1-dbgsym", "binary_version": "2.46.4-0ubuntu0.24.04.1" }, { "binary_name": "libjavascriptcoregtk-6.0-dev", "binary_version": "2.46.4-0ubuntu0.24.04.1" }, { "binary_name": "libjavascriptcoregtk-bin", "binary_version": "2.46.4-0ubuntu0.24.04.1" }, { "binary_name": "libjavascriptcoregtk-bin-dbgsym", "binary_version": "2.46.4-0ubuntu0.24.04.1" }, { "binary_name": "libwebkit2gtk-4.0-doc", "binary_version": "2.46.4-0ubuntu0.24.04.1" }, { "binary_name": "libwebkit2gtk-4.1-0", "binary_version": "2.46.4-0ubuntu0.24.04.1" }, { "binary_name": "libwebkit2gtk-4.1-0-dbgsym", "binary_version": "2.46.4-0ubuntu0.24.04.1" }, { "binary_name": "libwebkit2gtk-4.1-dev", "binary_version": "2.46.4-0ubuntu0.24.04.1" }, { "binary_name": "libwebkitgtk-6.0-4", "binary_version": "2.46.4-0ubuntu0.24.04.1" }, { "binary_name": "libwebkitgtk-6.0-4-dbgsym", "binary_version": "2.46.4-0ubuntu0.24.04.1" }, { "binary_name": "libwebkitgtk-6.0-dev", "binary_version": "2.46.4-0ubuntu0.24.04.1" }, { "binary_name": "libwebkitgtk-doc", "binary_version": "2.46.4-0ubuntu0.24.04.1" }, { "binary_name": "webkit2gtk-driver", "binary_version": "2.46.4-0ubuntu0.24.04.1" }, { "binary_name": "webkit2gtk-driver-dbgsym", "binary_version": "2.46.4-0ubuntu0.24.04.1" } ], "ubuntu_priority": "high", "availability": "No subscription required" }