| Revision Date: | 2020-12-02 | Version: | 1 |
| Title: | Security update for webkit2gtk3 (Moderate) |
| Description: |
This update for webkit2gtk3 to version 2.20.3 fixes the following issues:
These security issues were fixed:
- CVE-2018-4190: An unspecified issue allowed remote attackers to obtain sensitive credential information that is transmitted during a CSS mask-image fetch (bsc#1097693). - CVE-2018-4199: An unspecified issue allowed remote attackers to execute arbitrary code or cause a denial of service (buffer overflow and application crash) via a crafted web site (bsc#1097693) - CVE-2018-4218: An unspecified issue allowed remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site that triggers an @generatorState use-after-free (bsc#1097693) - CVE-2018-4222: An unspecified issue allowed remote attackers to execute arbitrary code via a crafted web site that leverages a getWasmBufferFromValue out-of-bounds read during WebAssembly compilation (bsc#1097693) - CVE-2018-4232: An unspecified issue allowed remote attackers to overwrite cookies via a crafted web site (bsc#1097693) - CVE-2018-4233: An unspecified issue allowed remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site (bsc#1097693) - CVE-2018-11646: webkitFaviconDatabaseSetIconForPageURL and webkitFaviconDatabaseSetIconURLForPageURL mishandle an unset pageURL, leading to an application crash (bsc#1095611).
These non-security issues were fixed:
- Disable Gigacage if mmap fails to allocate in Linux. - Add user agent quirk for paypal website. - Fix a network process crash when trying to get cookies of about:blank page. - Fix UI process crash when closing the window under Wayland. - Fix several crashes and rendering issues.
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1081947
1092206
1095611
1096328
1097693
1099874
1103093
1103737
1108889
1110194
1112142
1112143
1112144
1112146
1112147
1112148
1112152
1112153
1118367
1118368
1118595
1118596
1120639
1122623
1123043
1138687
1144348
1144352
1146569
1146571
1146572
1146702
1149742
1153163
1153164
1153332
1154091
1156402
CVE-2018-11646
CVE-2018-13785
CVE-2018-14424
CVE-2018-15518
CVE-2018-16301
CVE-2018-16435
CVE-2018-18384
CVE-2018-19873
CVE-2018-3136
CVE-2018-3139
CVE-2018-3149
CVE-2018-3169
CVE-2018-3180
CVE-2018-3183
CVE-2018-3214
CVE-2018-4190
CVE-2018-4199
CVE-2018-4218
CVE-2018-4222
CVE-2018-4232
CVE-2018-4233
CVE-2019-14491
CVE-2019-14492
CVE-2019-15142
CVE-2019-15143
CVE-2019-15144
CVE-2019-15145
CVE-2019-15165
CVE-2019-15939
CVE-2019-17177
CVE-2019-17178
CVE-2019-2201
CVE-2019-3816
CVE-2019-3833
CVE-2019-6471
CVE-2019-6706
SUSE-SU-2018:2075-1
SUSE-SU-2018:2771-1
SUSE-SU-2019:0058-1
SUSE-SU-2019:0247-1
SUSE-SU-2019:0447-1
SUSE-SU-2019:0654-1
SUSE-SU-2019:0707-1
SUSE-SU-2019:2452-1
SUSE-SU-2019:2550-1
SUSE-SU-2019:2673-1
SUSE-SU-2019:2971-1
SUSE-SU-2019:3078-1
SUSE-SU-2019:3192-1
|
| Platform(s): | SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise for SAP 12
SUSE Linux Enterprise High Availability 12 SP2
SUSE Linux Enterprise High Availability 12 SP3
SUSE Linux Enterprise High Availability 15
SUSE Linux Enterprise High Availability 15 SP1
SUSE Linux Enterprise Module for additional PackageHub packages 15
SUSE Linux Enterprise Module for Containers 12
SUSE Linux Enterprise Module for Desktop Applications 15
SUSE Linux Enterprise Module for High Performance Computing 15
SUSE Linux Enterprise Module for High Performance Computing 15 SP1
SUSE Linux Enterprise Module for Legacy Software 12
SUSE Linux Enterprise Module for Legacy Software 15
SUSE Linux Enterprise Module for Legacy Software 15 SP1
SUSE Linux Enterprise Module for Live Patching 15
SUSE Linux Enterprise Module for Live Patching 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
SUSE Linux Enterprise Module for Public Cloud 12
SUSE Linux Enterprise Module for Server Applications 15
SUSE Linux Enterprise Module for Server Applications 15 SP1
SUSE Linux Enterprise Module for Web Scripting 12
SUSE Linux Enterprise Module for Web Scripting 15
SUSE Linux Enterprise Module for Web Scripting 15 SP1
SUSE Linux Enterprise Server 11
SUSE Linux Enterprise Server 11 SP1-CLIENT-TOOLS
SUSE Linux Enterprise Server 11 SP1-LTSS
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP2-LTSS
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
SUSE Linux Enterprise Server for VMWare 11 SP2
SUSE Linux Enterprise Server for VMWare 11 SP3
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP1
SUSE Linux Enterprise Workstation Extension 12 SP2
SUSE Linux Enterprise Workstation Extension 15
SUSE Linux Enterprise Workstation Extension 15 SP1
SUSE Package Hub for SUSE Linux Enterprise 12
| Product(s): | |
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 is installed AND Package Information
alsa-1.0.27.2-11 is installed
OR libasound2-1.0.27.2-11 is installed
OR libasound2-32bit-1.0.27.2-11 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 SP1 is installed
AND Package Information
kernel-default-3.12.74-60.64.40 is installed
OR kernel-default-devel-3.12.74-60.64.40 is installed
OR kernel-default-extra-3.12.74-60.64.40 is installed
OR kernel-devel-3.12.74-60.64.40 is installed
OR kernel-macros-3.12.74-60.64.40 is installed
OR kernel-source-3.12.74-60.64.40 is installed
OR kernel-syms-3.12.74-60.64.40 is installed
OR kernel-xen-3.12.74-60.64.40 is installed
OR kernel-xen-devel-3.12.74-60.64.40 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 SP2 is installed
AND Package Information
xen-4.7.1_04-28 is installed
OR xen-libs-4.7.1_04-28 is installed
OR xen-libs-32bit-4.7.1_04-28 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 SP4 is installed
AND Package Information
libmysqlclient18-10.0.35-1 is installed
OR libmysqlclient18-32bit-10.0.35-1 is installed
OR libmysqlclient_r18-10.0.35-1 is installed
OR libmysqlclient_r18-32bit-10.0.35-1 is installed
OR mariadb-100-errormessages-10.0.35-1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise for SAP 12 is installed
AND Package Information
kgraft-patch-3_12_51-52_31-default-6-5.1 is installed
OR kgraft-patch-3_12_51-52_31-xen-6-5.1 is installed
OR kgraft-patch-SLE12_Update_9-6-5.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise High Availability 12 SP2 is installed
AND fence-agents-4.0.22+git.1455008135.15c5e92-8 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise High Availability 12 SP3 is installed
AND Package Information
cluster-md-kmp-default-4.4.73-5 is installed
OR dlm-kmp-default-4.4.73-5 is installed
OR gfs2-kmp-default-4.4.73-5 is installed
OR ocfs2-kmp-default-4.4.73-5 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise High Availability 15 is installed
AND Package Information
ruby2.5-rubygem-sprockets-3.7.2-3.3 is installed
OR rubygem-sprockets-3.7.2-3.3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise High Availability 15 SP1 is installed
AND Package Information
libqb-1.0.3+20190326.a521604-3.3 is installed
OR libqb-devel-1.0.3+20190326.a521604-3.3 is installed
OR libqb-tests-1.0.3+20190326.a521604-3.3 is installed
OR libqb-tools-1.0.3+20190326.a521604-3.3 is installed
OR libqb20-1.0.3+20190326.a521604-3.3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed
AND Package Information
nmap-7.70-3.12 is installed
OR nping-7.70-3.12 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Containers 12 is installed
AND python-PyYAML-3.10-15 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Desktop Applications 15 is installed
AND Package Information
typelib-1_0-JavaScriptCore-4_0-2.20.3-3.3 is installed
OR typelib-1_0-WebKit2-4_0-2.20.3-3.3 is installed
OR typelib-1_0-WebKit2WebExtension-4_0-2.20.3-3.3 is installed
OR webkit2gtk3-2.20.3-3.3 is installed
OR webkit2gtk3-devel-2.20.3-3.3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for High Performance Computing 15 is installed
AND Package Information
libmunge2-0.5.13-4.3 is installed
OR munge-0.5.13-4.3 is installed
OR munge-devel-0.5.13-4.3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for High Performance Computing 15 SP1 is installed
AND Package Information
libmunge2-0.5.13-4.3 is installed
OR munge-0.5.13-4.3 is installed
OR munge-devel-0.5.13-4.3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Legacy Software 12 is installed
AND Package Information
libopenssl0_9_8-0.9.8j-59 is installed
OR libopenssl0_9_8-32bit-0.9.8j-59 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Legacy Software 15 is installed
AND Package Information
libopenssl-1_0_0-devel-1.0.2n-3.3 is installed
OR libopenssl1_0_0-1.0.2n-3.3 is installed
OR openssl-1_0_0-1.0.2n-3.3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed
AND Package Information
java-1_8_0-ibm-1.8.0_sr5.35-3.20 is installed
OR java-1_8_0-ibm-alsa-1.8.0_sr5.35-3.20 is installed
OR java-1_8_0-ibm-devel-1.8.0_sr5.35-3.20 is installed
OR java-1_8_0-ibm-plugin-1.8.0_sr5.35-3.20 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Live Patching 15 is installed
AND Package Information
kernel-default-4.12.14-25.3 is installed
OR kernel-default-livepatch-4.12.14-25.3 is installed
OR kernel-livepatch-4_12_14-25_3-default-1-1.3 is installed
OR kernel-livepatch-SLE15_Update_1-1-1.3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed
AND Package Information
kernel-livepatch-4_12_14-195-default-3-7 is installed
OR kernel-livepatch-SLE15-SP1_Update_0-3-7 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed
AND Package Information
djvulibre-3.5.27-3.3 is installed
OR djvulibre-doc-3.5.27-3.3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed
AND Package Information
389-ds-1.4.0.3-4.7 is installed
OR 389-ds-snmp-1.4.0.3-4.7 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Public Cloud 12 is installed
AND python-pycrypto-2.6.1-1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Server Applications 15 is installed
AND Package Information
sysstat-12.0.2-3.6 is installed
OR sysstat-isag-12.0.2-3.6 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
AND Package Information
libecpg6-10.10-8.6 is installed
OR postgresql10-10.10-8.6 is installed
OR postgresql10-contrib-10.10-8.6 is installed
OR postgresql10-devel-10.10-8.6 is installed
OR postgresql10-docs-10.10-8.6 is installed
OR postgresql10-plperl-10.10-8.6 is installed
OR postgresql10-plpython-10.10-8.6 is installed
OR postgresql10-pltcl-10.10-8.6 is installed
OR postgresql10-server-10.10-8.6 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Web Scripting 12 is installed
AND Package Information
apache2-mod_php5-5.5.14-4 is installed
OR php5-5.5.14-4 is installed
OR php5-bcmath-5.5.14-4 is installed
OR php5-bz2-5.5.14-4 is installed
OR php5-calendar-5.5.14-4 is installed
OR php5-ctype-5.5.14-4 is installed
OR php5-curl-5.5.14-4 is installed
OR php5-dba-5.5.14-4 is installed
OR php5-dom-5.5.14-4 is installed
OR php5-enchant-5.5.14-4 is installed
OR php5-exif-5.5.14-4 is installed
OR php5-fastcgi-5.5.14-4 is installed
OR php5-fileinfo-5.5.14-4 is installed
OR php5-fpm-5.5.14-4 is installed
OR php5-ftp-5.5.14-4 is installed
OR php5-gd-5.5.14-4 is installed
OR php5-gettext-5.5.14-4 is installed
OR php5-gmp-5.5.14-4 is installed
OR php5-iconv-5.5.14-4 is installed
OR php5-intl-5.5.14-4 is installed
OR php5-json-5.5.14-4 is installed
OR php5-ldap-5.5.14-4 is installed
OR php5-mbstring-5.5.14-4 is installed
OR php5-mcrypt-5.5.14-4 is installed
OR php5-mysql-5.5.14-4 is installed
OR php5-odbc-5.5.14-4 is installed
OR php5-openssl-5.5.14-4 is installed
OR php5-pcntl-5.5.14-4 is installed
OR php5-pdo-5.5.14-4 is installed
OR php5-pear-5.5.14-4 is installed
OR php5-pgsql-5.5.14-4 is installed
OR php5-pspell-5.5.14-4 is installed
OR php5-shmop-5.5.14-4 is installed
OR php5-snmp-5.5.14-4 is installed
OR php5-soap-5.5.14-4 is installed
OR php5-sockets-5.5.14-4 is installed
OR php5-sqlite-5.5.14-4 is installed
OR php5-suhosin-5.5.14-4 is installed
OR php5-sysvmsg-5.5.14-4 is installed
OR php5-sysvsem-5.5.14-4 is installed
OR php5-sysvshm-5.5.14-4 is installed
OR php5-tokenizer-5.5.14-4 is installed
OR php5-wddx-5.5.14-4 is installed
OR php5-xmlreader-5.5.14-4 is installed
OR php5-xmlrpc-5.5.14-4 is installed
OR php5-xmlwriter-5.5.14-4 is installed
OR php5-xsl-5.5.14-4 is installed
OR php5-zip-5.5.14-4 is installed
OR php5-zlib-5.5.14-4 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Web Scripting 15 is installed
AND Package Information
apache2-mod_php7-7.2.5-4.9 is installed
OR php7-7.2.5-4.9 is installed
OR php7-bcmath-7.2.5-4.9 is installed
OR php7-bz2-7.2.5-4.9 is installed
OR php7-calendar-7.2.5-4.9 is installed
OR php7-ctype-7.2.5-4.9 is installed
OR php7-curl-7.2.5-4.9 is installed
OR php7-dba-7.2.5-4.9 is installed
OR php7-devel-7.2.5-4.9 is installed
OR php7-dom-7.2.5-4.9 is installed
OR php7-enchant-7.2.5-4.9 is installed
OR php7-exif-7.2.5-4.9 is installed
OR php7-fastcgi-7.2.5-4.9 is installed
OR php7-fileinfo-7.2.5-4.9 is installed
OR php7-fpm-7.2.5-4.9 is installed
OR php7-ftp-7.2.5-4.9 is installed
OR php7-gd-7.2.5-4.9 is installed
OR php7-gettext-7.2.5-4.9 is installed
OR php7-gmp-7.2.5-4.9 is installed
OR php7-iconv-7.2.5-4.9 is installed
OR php7-intl-7.2.5-4.9 is installed
OR php7-json-7.2.5-4.9 is installed
OR php7-ldap-7.2.5-4.9 is installed
OR php7-mbstring-7.2.5-4.9 is installed
OR php7-mysql-7.2.5-4.9 is installed
OR php7-odbc-7.2.5-4.9 is installed
OR php7-opcache-7.2.5-4.9 is installed
OR php7-openssl-7.2.5-4.9 is installed
OR php7-pcntl-7.2.5-4.9 is installed
OR php7-pdo-7.2.5-4.9 is installed
OR php7-pear-7.2.5-4.9 is installed
OR php7-pear-Archive_Tar-7.2.5-4.9 is installed
OR php7-pgsql-7.2.5-4.9 is installed
OR php7-phar-7.2.5-4.9 is installed
OR php7-posix-7.2.5-4.9 is installed
OR php7-shmop-7.2.5-4.9 is installed
OR php7-snmp-7.2.5-4.9 is installed
OR php7-soap-7.2.5-4.9 is installed
OR php7-sockets-7.2.5-4.9 is installed
OR php7-sqlite-7.2.5-4.9 is installed
OR php7-sysvmsg-7.2.5-4.9 is installed
OR php7-sysvsem-7.2.5-4.9 is installed
OR php7-sysvshm-7.2.5-4.9 is installed
OR php7-tokenizer-7.2.5-4.9 is installed
OR php7-wddx-7.2.5-4.9 is installed
OR php7-xmlreader-7.2.5-4.9 is installed
OR php7-xmlrpc-7.2.5-4.9 is installed
OR php7-xmlwriter-7.2.5-4.9 is installed
OR php7-xsl-7.2.5-4.9 is installed
OR php7-zip-7.2.5-4.9 is installed
OR php7-zlib-7.2.5-4.9 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed
AND Package Information
tomcat-9.0.21-4.5 is installed
OR tomcat-admin-webapps-9.0.21-4.5 is installed
OR tomcat-el-3_0-api-9.0.21-4.5 is installed
OR tomcat-jsp-2_3-api-9.0.21-4.5 is installed
OR tomcat-lib-9.0.21-4.5 is installed
OR tomcat-servlet-4_0-api-9.0.21-4.5 is installed
OR tomcat-webapps-9.0.21-4.5 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 is installed
AND Package Information
aaa_base-13.2+git20140911.61c1681-1 is installed
OR aaa_base-extras-13.2+git20140911.61c1681-1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP1 is installed
AND Package Information
aaa_base-13.2+git20140911.61c1681-9 is installed
OR aaa_base-extras-13.2+git20140911.61c1681-9 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP2 is installed
AND libapr1-1.5.1-2 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP3 is installed
AND Package Information
MozillaFirefox-52.2.0esr-108 is installed
OR MozillaFirefox-translations-52.2.0esr-108 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed
AND wpa_supplicant-2.2-14 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Software Development Kit 12 is installed
AND Package Information
MozillaFirefox-31.8.0esr-40.1 is installed
OR MozillaFirefox-devel-31.8.0esr-40.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Software Development Kit 12 SP1 is installed
AND sudo-devel-1.8.10p3-1.62 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Workstation Extension 12 SP2 is installed
AND gnome-shell-calendar-3.20.4-70.4 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Workstation Extension 15 is installed
AND Package Information
kernel-default-4.12.14-25.13 is installed
OR kernel-default-extra-4.12.14-25.13 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
AND Package Information
MozillaThunderbird-60.7.0-3.36 is installed
OR MozillaThunderbird-translations-common-60.7.0-3.36 is installed
OR MozillaThunderbird-translations-other-60.7.0-3.36 is installed
|
| Definition Synopsis |
| SUSE Package Hub for SUSE Linux Enterprise 12 is installed
AND Package Information
irssi-0.8.20-9 is installed
OR irssi-devel-0.8.20-9 is installed
|