CVE-2018-12293

Name	CVE-2018-12293
Description	The getImageData function in the ImageBufferCairo class in WebCore/platform/graphics/cairo/ImageBufferCairo.cpp in WebKit, as used in WebKitGTK+ prior to version 2.20.3 and WPE WebKit prior to version 2.20.1, is vulnerable to a heap-based buffer overflow triggered by an integer overflow, which could be abused by crafted HTML content.
Source	CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)

Vulnerable and fixed packages

The table below lists information on source packages.

Source Package	Release	Version	Status
webkit2gtk (PTS)	jessie	2.6.2+dfsg1-4	vulnerable
	stretch	2.18.6-1~deb9u1	vulnerable
	buster (security), buster, buster (lts)	2.38.6-0+deb10u1	fixed
	bullseye	2.44.2-1~deb11u1	fixed
	bullseye (security)	2.46.3-1~deb11u2	fixed
	bookworm	2.46.0-2~deb12u1	fixed
	bookworm (security)	2.46.3-1~deb12u1	fixed
	sid, trixie	2.46.3-1	fixed

The information below is based on the following data on fixed versions.

Package	Type	Release	Fixed Version	Urgency	Origin	Debian Bugs
webkit2gtk	source	(unstable)	2.20.3-1	unimportant

Not covered by security support
https://webkitgtk.org/security/WSA-2018-0005.html