Acknowledged
Created: Jul 7, 2021
Updated: Oct 27, 2021
Found In Version: 10.19.45.1
Severity: Standard
Applicable for: Wind River Linux LTS 19
Component/s: Userspace
A use-after-free vulnerability exists in the way certain events are processed for ImageLoader objects of Webkit WebKitGTK 2.30.4. A specially crafted web page can lead to a potential information leak and further memory corruption. In order to trigger the vulnerability, a victim must be tricked into visiting a malicious webpage.
CREATE(Triage):(User=admin) [CVE-2021-21775|https://nvd.nist.gov/vuln/detail/CVE-2021-21775]