Processing web content may disclose sensitive information.
Created webkitgtk tracking bugs for this issue: Affects: fedora-all [bug 2209229]
This is fixed by https://commits.webkit.org/264365@main
This fix contains a test case, so for we can verify that the fix actually works. I've attached it to this bug. You can run: $ /usr/libexec/webkit2gtk-4.0/jsc test.js Without the fix, the test case uses lots of memory and keeps running indefinitely. With the fix, it should stop right away.
Created attachment 1967144 [details] Test case
This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2023:3432 https://access.redhat.com/errata/RHSA-2023:3432
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2023:3433 https://access.redhat.com/errata/RHSA-2023:3433
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2023-28204