The following vulnerabilities have been discovered in the WebKitGTK
web engine:

CVE-2024-40866

Hafiizh and YoKo Kho discovered that visiting a malicious website
may lead to address bar spoofing.

CVE-2024-44187

Narendra Bhati discovered that a malicious website may exfiltrate
data cross-origin.

https://security-tracker.debian.org/tracker/DSA-5792-1

Read More