OVAL Reference oval:org.opensuse.security:def:50735

Oval Definition:

oval:org.opensuse.security:def:50735

Revision Date:	2020-12-01	Version:	1
Title:	Security update for webkit2gtk3 (Important)
Description:	This update for webkit2gtk3 fixes the following issues: Security issue fixed: - CVE-2020-3899: Fixed a memory consumption issue that could have led to remote code execution (bsc#1170643). Non-security issues fixed: - Update to version 2.28.2 (bsc#1170643): + Fix excessive CPU usage due to GdkFrameClock not being stopped. + Fix UI process crash when EGL_WL_bind_wayland_display extension is not available. + Fix position of select popup menus in X11. + Fix playing of Youtube 'live stream'/H264 URLs. + Fix a crash under X11 when cairo uses xcb. + Fix several crashes and rendering issues.
Family:	unix	Class:	patch
Status:		Reference(s):	1044231 1051510 1051858 1056686 1060463 1065729 1067720 1083647 1085030 1093697 1100369 1102379 1102400 1102410 1103990 1103992 1104353 1104745 1109160 1109837 1109911 1111666 1111974 1112178 1112374 1113956 1114279 1114685 1118367 1118368 1119680 1120386 1120999 1123823 1123828 1123832 1126826 1126829 1126831 1127611 1128220 1133021 1133191 1134090 1136157 1136446 1136935 1137597 1140126 1141895 1142649 1143609 1144333 1145051 1146539 1153768 1153770 1156205 1157051 1157424 1157755 1158187 1158983 1159198 1159285 1160254 1160590 1160659 1161168 1161561 1161951 1162171 1162224 1162367 1162825 1162929 1162931 1163333 1163744 1164078 1164507 1164777 1164780 1164893 1165019 1165111 1165182 1165185 1165211 1165404 1165488 1165527 1165741 1165813 1165823 1165873 1165929 1165949 1165950 1165980 1165984 1165985 1166003 1166101 1166102 1166103 1166104 1166632 1166730 1166731 1166732 1166733 1166734 1166735 1166844 1166982 1167005 1167216 1167290 1167316 1167421 1167423 1167627 1167629 1168075 1168273 1168276 1168295 1168367 1168424 1168443 1168552 1168829 1168854 1169013 1169307 1169308 1170643 1170667 1170713 1171252 1171254 1171313 1171437 1171740 1172307 1172958 1173159 1173160 1173161 1173307 1173311 1173359 1173983 1174091 1174157 1174543 1174633 1174635 1174638 1175443 1176092 1176410 1176674 1177143 906079 CVE-2017-3136 CVE-2018-1336 CVE-2018-20748 CVE-2018-20749 CVE-2018-20750 CVE-2018-5741 CVE-2018-8014 CVE-2018-8034 CVE-2018-8037 CVE-2019-11477 CVE-2019-11478 CVE-2019-11487 CVE-2019-12972 CVE-2019-14250 CVE-2019-14444 CVE-2019-17450 CVE-2019-17451 CVE-2019-19768 CVE-2019-19770 CVE-2019-20907 CVE-2019-3701 CVE-2019-3846 CVE-2019-6477 CVE-2019-9074 CVE-2019-9075 CVE-2019-9077 CVE-2019-9458 CVE-2019-9674 CVE-2020-10531 CVE-2020-10730 CVE-2020-10745 CVE-2020-10760 CVE-2020-10942 CVE-2020-11494 CVE-2020-12653 CVE-2020-12654 CVE-2020-14303 CVE-2020-14345 CVE-2020-14346 CVE-2020-14347 CVE-2020-14556 CVE-2020-14562 CVE-2020-14573 CVE-2020-14577 CVE-2020-14581 CVE-2020-14583 CVE-2020-14593 CVE-2020-14621 CVE-2020-25219 CVE-2020-26154 CVE-2020-3899 CVE-2020-8492 CVE-2020-8616 CVE-2020-8617 CVE-2020-8618 CVE-2020-8619 CVE-2020-8620 CVE-2020-8621 CVE-2020-8622 CVE-2020-8623 CVE-2020-8624 CVE-2020-8647 CVE-2020-8649 CVE-2020-8834 CVE-2020-9383 SUSE-SU-2018:3011-1 SUSE-SU-2019:0283-1 SUSE-SU-2020:0510-1 SUSE-SU-2020:0819-1 SUSE-SU-2020:1123-1 SUSE-SU-2020:1198-1 SUSE-SU-2020:2143-1 SUSE-SU-2020:2326-1 SUSE-SU-2020:2901-1 SUSE-SU-2020:2914-1
Platform(s):	SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Python2 packages 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Linux Enterprise Workstation Extension 15 SP2 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information MozillaFirefox-10.0.10-0.3 is installed OR MozillaFirefox-translations-10.0.10-0.3 is installed OR mozilla-nspr-4.9.3-0.2 is installed OR mozilla-nspr-32bit-4.9.3-0.2 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information libssh2-1-1.2.9-4.2.6 is installed OR libssh2_org-1.2.9-4.2.6 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information libpulse-mainloop-glib0-5.0-2 is installed OR libpulse-mainloop-glib0-32bit-5.0-2 is installed OR libpulse0-5.0-2 is installed OR libpulse0-32bit-5.0-2 is installed OR pulseaudio-5.0-2 is installed OR pulseaudio-esound-compat-5.0-2 is installed OR pulseaudio-gdm-hooks-5.0-2 is installed OR pulseaudio-lang-5.0-2 is installed OR pulseaudio-module-bluetooth-5.0-2 is installed OR pulseaudio-module-gconf-5.0-2 is installed OR pulseaudio-module-jack-5.0-2 is installed OR pulseaudio-module-lirc-5.0-2 is installed OR pulseaudio-module-x11-5.0-2 is installed OR pulseaudio-module-zeroconf-5.0-2 is installed OR pulseaudio-utils-5.0-2 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information colord-1.1.7-5 is installed OR colord-gtk-lang-0.1.25-3 is installed OR colord-lang-1.1.7-5 is installed OR libcolord-gtk1-0.1.25-3 is installed OR libcolord2-1.1.7-5 is installed OR libcolord2-32bit-1.1.7-5 is installed OR libcolorhug2-1.1.7-5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information coreutils-8.25-12 is installed OR coreutils-lang-8.25-12 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information java-1_7_0-openjdk-plugin-1.6.2-2.8 is installed OR java-1_8_0-openjdk-plugin-1.6.2-2.10 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information emacs-24.3-25.3 is installed OR emacs-info-24.3-25.3 is installed OR emacs-x11-24.3-25.3 is installed OR etags-24.3-25.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND Package Information LibVNCServer-0.9.10-4.6 is installed OR libvncserver0-0.9.10-4.6 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND Package Information libjavascriptcoregtk-4_0-18-2.28.2-3.54 is installed OR libwebkit2gtk-4_0-37-2.28.2-3.54 is installed OR libwebkit2gtk3-lang-2.28.2-3.54 is installed OR webkit2gtk-4_0-injected-bundles-2.28.2-3.54 is installed OR webkit2gtk3-2.28.2-3.54 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-150_14-default-2-2 is installed OR kernel-livepatch-SLE15_Update_9-2-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_18-default-6-2 is installed OR kernel-livepatch-SLE15-SP1_Update_5-6-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information cluster-md-kmp-rt_debug-4.12.14-14.23 is installed OR dlm-kmp-rt_debug-4.12.14-14.23 is installed OR gfs2-kmp-rt_debug-4.12.14-14.23 is installed OR kernel-rt-4.12.14-14.23 is installed OR kernel-rt-extra-4.12.14-14.23 is installed OR kernel-rt-livepatch-devel-4.12.14-14.23 is installed OR kernel-rt_debug-4.12.14-14.23 is installed OR kernel-rt_debug-base-4.12.14-14.23 is installed OR kernel-rt_debug-extra-4.12.14-14.23 is installed OR kernel-rt_debug-livepatch-devel-4.12.14-14.23 is installed OR kselftests-kmp-rt-4.12.14-14.23 is installed OR kselftests-kmp-rt_debug-4.12.14-14.23 is installed OR ocfs2-kmp-rt_debug-4.12.14-14.23 is installed OR reiserfs-kmp-rt-4.12.14-14.23 is installed OR reiserfs-kmp-rt_debug-4.12.14-14.23 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information libpython3_6m1_0-32bit-3.6.10-3.59 is installed OR python3-3.6.10-3.59 is installed OR python3-32bit-3.6.10-3.59 is installed OR python3-base-3.6.10-3.59 is installed OR python3-base-32bit-3.6.10-3.59 is installed OR python3-doc-3.6.10-3.59 is installed OR python3-testsuite-3.6.10-3.59 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed AND Package Information python-2.7.17-7.35 is installed OR python-base-2.7.17-7.35 is installed OR python-curses-2.7.17-7.35 is installed OR python-devel-2.7.17-7.35 is installed OR python-gdbm-2.7.17-7.35 is installed OR python-xml-2.7.17-7.35 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information tomcat-9.0.10-3.7 is installed OR tomcat-admin-webapps-9.0.10-3.7 is installed OR tomcat-el-3_0-api-9.0.10-3.7 is installed OR tomcat-jsp-2_3-api-9.0.10-3.7 is installed OR tomcat-lib-9.0.10-3.7 is installed OR tomcat-servlet-4_0-api-9.0.10-3.7 is installed OR tomcat-webapps-9.0.10-3.7 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information gnome-shell-3.10.4-40 is installed OR gnome-shell-browser-plugin-3.10.4-40 is installed OR gnome-shell-lang-3.10.4-40 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information openssh-6.6p1-54.15 is installed OR openssh-askpass-gnome-6.6p1-54.15 is installed OR openssh-fips-6.6p1-54.15 is installed OR openssh-helpers-6.6p1-54.15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information MozillaFirefox-45.4.0esr-81 is installed OR MozillaFirefox-translations-45.4.0esr-81 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information kernel-firmware-20170530-21.22 is installed OR ucode-amd-20170530-21.22 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-devel-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.30-38.26 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_90-92_50-default-7-2 is installed OR kgraft-patch-SLE12-SP2_Update_15-7-2 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3 is installed AND MozillaFirefox-60.7.2-109.80 is installed OR MozillaFirefox-translations-common-60.7.2-109.80 is installed OR Package Information SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND MozillaFirefox-60.7.2-109.80 is installed OR MozillaFirefox-translations-common-60.7.2-109.80 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information giflib-progs-5.0.5-12 is installed OR libgif6-5.0.5-12 is installed OR libgif6-32bit-5.0.5-12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libpolkit0-0.113-5.18 is installed OR polkit-0.113-5.18 is installed OR typelib-1_0-Polkit-1_0-0.113-5.18 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_162-94_72-default-5-2 is installed OR kgraft-patch-SLE12-SP3_Update_22-5-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information python3-rpm-4.11.2-16.16 is installed OR rpm-4.11.2-16.16 is installed OR rpm-32bit-4.11.2-16.16 is installed OR rpm-build-4.11.2-16.16 is installed OR rpm-python-4.11.2-16.16 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libgcrypt20-1.6.1-16.61 is installed OR libgcrypt20-32bit-1.6.1-16.61 is installed OR libgcrypt20-hmac-1.6.1-16.61 is installed OR libgcrypt20-hmac-32bit-1.6.1-16.61 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information xorg-x11-server-1.19.6-8.16 is installed OR xorg-x11-server-extra-1.19.6-8.16 is installed OR xorg-x11-server-sdk-1.19.6-8.16 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information git-2.16.4-3.20 is installed OR git-arch-2.16.4-3.20 is installed OR git-core-2.16.4-3.20 is installed OR git-cvs-2.16.4-3.20 is installed OR git-daemon-2.16.4-3.20 is installed OR git-doc-2.16.4-3.20 is installed OR git-email-2.16.4-3.20 is installed OR git-gui-2.16.4-3.20 is installed OR git-svn-2.16.4-3.20 is installed OR git-web-2.16.4-3.20 is installed OR gitk-2.16.4-3.20 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information MozillaThunderbird-60.5.1-3.24 is installed OR MozillaThunderbird-translations-common-60.5.1-3.24 is installed OR MozillaThunderbird-translations-other-60.5.1-3.24 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.64 is installed OR kernel-default-extra-4.12.14-197.64 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP2 is installed AND transfig-3.2.6a-4.9 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information jakarta-commons-fileupload-1.1.1-122.3 is installed OR jakarta-commons-fileupload-javadoc-1.1.1-122.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND python-SQLAlchemy-1.1.12-3.5 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ruby2.1-rubygem-actionpack-4_2-4.2.9-7.6 is installed OR rubygem-actionpack-4_2-4.2.9-7.6 is installed

BACK