CVE-2019-11070

WebKitGTK and WPE WebKit prior to version 2.24.1 failed to properly apply configured HTTP proxy settings when downloading livestream video (HLS, DASH, or Smooth Streaming), an error resulting in deanonymization. This issue was corrected by changing the way livestreams are downloaded.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:webkitgtk:webkitgtk:*:*:*:*:*:*:*:*
cpe:2.3:a:wpewebkit:wpe_webkit:*:*:*:*:*:*:*:*

History

07 Nov 2023, 03:02

Type Values Removed Values Added
References
  • {'url': 'https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YO5ZBUWOOXMVZPBYLZRDZF6ZQGBYJERQ/', 'name': 'FEDORA-2019-d9a15be3ba', 'tags': [], 'refsource': 'FEDORA'}
  • () https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YO5ZBUWOOXMVZPBYLZRDZF6ZQGBYJERQ/ -

Information

Published : 2019-04-10 21:29

Updated : 2024-02-28 17:08


NVD link : CVE-2019-11070

Mitre link : CVE-2019-11070

CVE.ORG link : CVE-2019-11070


JSON object : View

Products Affected

webkitgtk

  • webkitgtk

wpewebkit

  • wpe_webkit
CWE
CWE-19

Data Processing Errors