Oval Definition:oval:org.opensuse.security:def:51308
Revision Date:2020-12-01Version:1
Title:Security update for webkit2gtk3 (Important)
Description:

This update for webkit2gtk3 to version 2.26.4 fixes the following issues:

Security issues fixed:

- CVE-2019-8835: Fixed multiple memory corruption issues (bsc#1161719). - CVE-2019-8844: Fixed multiple memory corruption issues (bsc#1161719). - CVE-2019-8846: Fixed a use-after-free issue (bsc#1161719). - CVE-2020-3862: Fixed a memory handling issue (bsc#1163809). - CVE-2020-3864: Fixed a logic issue in the DOM object context handling (bsc#1163809). - CVE-2020-3865: Fixed a logic issue in the DOM object context handling (bsc#1163809). - CVE-2020-3867: Fixed an XSS issue (bsc#1163809). - CVE-2020-3868: Fixed multiple memory corruption issues that could have lead to arbitrary code execution (bsc#1163809).

Non-security issues fixed:

- Fixed issues while trying to play a video on NextCloud. - Fixed vertical alignment of text containing arabic diacritics. - Fixed build with icu 65.1. - Fixed page loading errors with websites using HSTS. - Fixed web process crash when displaying a KaTeX formula. - Fixed several crashes and rendering issues. - Switched to a single web process for Evolution and geary (bsc#1159329 glgo#GNOME/evolution#587).
Family:unixClass:patch
Status:Reference(s):1027519
1046303
1046305
1046306
1046307
1046540
1046542
1046543
1048129
1050242
1050252
1050529
1050536
1050538
1050545
1050549
1050662
1051510
1051979
1052766
1055968
1056427
1056643
1056651
1056653
1056657
1056658
1056662
1056686
1056787
1058115
1058513
1058659
1058717
1060463
1061024
1061840
1062897
1064802
1065600
1066110
1066129
1068032
1068054
1071218
1071995
1072829
1072856
1073513
1073765
1073960
1074562
1074578
1074701
1074741
1074873
1074919
1075006
1075007
1075262
1075419
1075748
1075876
1076049
1076115
1076372
1076830
1077338
1077761
1078248
1078353
1079152
1079747
1080039
1080542
1081599
1082485
1082504
1082869
1082962
1083647
1083900
1084001
1084570
1085308
1085539
1085626
1085933
1085936
1085937
1085938
1085939
1085941
1086274
1086282
1086283
1086286
1086288
1086314
1086319
1086323
1086400
1086652
1086739
1087078
1087081
1087082
1087084
1087092
1087205
1087210
1087213
1087214
1087284
1087405
1087458
1087939
1087978
1088354
1088690
1088704
1088722
1088796
1088804
1088821
1088866
1089115
1089268
1089343
1089467
1089608
1089663
1089664
1089667
1089669
1089752
1089753
1089878
1090150
1090457
1090605
1090643
1090646
1090658
1090734
1090888
1090953
1091158
1091171
1091424
1091594
1091666
1091678
1091686
1091781
1091782
1091815
1091860
1091960
1092100
1092472
1092710
1092772
1092888
1092904
1092975
1093023
1093027
1093035
1093118
1093148
1093158
1093184
1093205
1093273
1093290
1093604
1093641
1093649
1093653
1093655
1093657
1093663
1093721
1093728
1093904
1093990
1094244
1094356
1094420
1094541
1094575
1094751
1094825
1094840
1094912
1094978
1095042
1095094
1095115
1095155
1095265
1095321
1095337
1095467
1095573
1095735
1095893
1096065
1096480
1096529
1096696
1096705
1096728
1096753
1096790
1096793
1097034
1097105
1097234
1097356
1097373
1097439
1097465
1097468
1097470
1097471
1097472
1097551
1097780
1097796
1097800
1097941
1097961
1098016
1098043
1098050
1098174
1098176
1098236
1098401
1098425
1098435
1098599
1098626
1098706
1098983
1098995
1099029
1099041
1099109
1099142
1099183
1099715
1099792
1099811
1099813
1099844
1099845
1099846
1099849
1099858
1099863
1099864
1099918
1099924
1099966
1100132
1100209
1100340
1100362
1100382
1100394
1100416
1100418
1100491
1100602
1100633
1100843
1101116
1101296
1101315
1101324
1101331
1101669
1101828
1101832
1101833
1101837
1101839
1101841
1101843
1101844
1101845
1101847
1101852
1101853
1101867
1101872
1101874
1101875
1101882
1101883
1101885
1101887
1101888
1101889
1101890
1101891
1101893
1101895
1101896
1101900
1101902
1101903
1102633
1102658
1103097
1103356
1103421
1103517
1103723
1103724
1103725
1103726
1103727
1103728
1103729
1103730
1103917
1103920
1103948
1103949
1104066
1104111
1104174
1104211
1104319
1129991
1149841
1151021
1152497
1152763
1153921
1154401
1156188
1157047
1157888
1158003
1158004
1158005
1158006
1158007
1159329
1160594
1160764
1161719
1161779
1163809
1163922
1171252
1171254
1177513
1177729
971975
975772
CVE-2008-5984
CVE-2009-1892
CVE-2010-2156
CVE-2010-3611
CVE-2010-3616
CVE-2011-0413
CVE-2011-0997
CVE-2011-2748
CVE-2011-2749
CVE-2011-4539
CVE-2011-4868
CVE-2012-3570
CVE-2012-3571
CVE-2012-3954
CVE-2012-3955
CVE-2013-2266
CVE-2014-2524
CVE-2014-6271
CVE-2014-6272
CVE-2014-7169
CVE-2014-7186
CVE-2014-7187
CVE-2017-5715
CVE-2017-5753
CVE-2018-1000200
CVE-2018-1000204
CVE-2018-10087
CVE-2018-10124
CVE-2018-10876
CVE-2018-10877
CVE-2018-10878
CVE-2018-10879
CVE-2018-10880
CVE-2018-10881
CVE-2018-10882
CVE-2018-10883
CVE-2018-1092
CVE-2018-1093
CVE-2018-1094
CVE-2018-1118
CVE-2018-1120
CVE-2018-1130
CVE-2018-12233
CVE-2018-13053
CVE-2018-13405
CVE-2018-13406
CVE-2018-14394
CVE-2018-14395
CVE-2018-3620
CVE-2018-3639
CVE-2018-3646
CVE-2018-5391
CVE-2018-5803
CVE-2018-5848
CVE-2018-7492
CVE-2018-8781
CVE-2018-9385
CVE-2019-14835
CVE-2019-18804
CVE-2019-19577
CVE-2019-19578
CVE-2019-19579
CVE-2019-19580
CVE-2019-19581
CVE-2019-19582
CVE-2019-19583
CVE-2019-3688
CVE-2019-3690
CVE-2019-3695
CVE-2019-3696
CVE-2019-8835
CVE-2019-8844
CVE-2019-8846
CVE-2020-12351
CVE-2020-12653
CVE-2020-12654
CVE-2020-25645
CVE-2020-3862
CVE-2020-3864
CVE-2020-3865
CVE-2020-3867
CVE-2020-3868
CVE-2020-8013
SUSE-SU-2018:2092-1
SUSE-SU-2018:2380-1
SUSE-SU-2019:1299-1
SUSE-SU-2019:3033-2
SUSE-SU-2019:3338-1
SUSE-SU-2020:0357-1
SUSE-SU-2020:0468-1
SUSE-SU-2020:1163-1
Platform(s):openSUSE Leap 15.0
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1
SUSE Linux Enterprise Module for Desktop Applications 15 SP1
SUSE Linux Enterprise Module for Development Tools 15
SUSE Linux Enterprise Module for Live Patching 15
SUSE Linux Enterprise Module for Live Patching 15 SP1
SUSE Linux Enterprise Module for Server Applications 15 SP1
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 15-LTSS
SUSE Linux Enterprise Workstation Extension 15
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND binutils-2.29.1-lp150.4 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND Package Information
  • vm-install-0.5.12-0.5 is installed
  • OR xen-4.1.3_02-0.5 is installed
  • OR xen-doc-html-4.1.3_02-0.5 is installed
  • OR xen-doc-pdf-4.1.3_02-0.5 is installed
  • OR xen-kmp-default-4.1.3_02_3.0.38_0.5-0.5 is installed
  • OR xen-kmp-trace-4.1.3_02_3.0.38_0.5-0.5 is installed
  • OR xen-libs-4.1.3_02-0.5 is installed
  • OR xen-libs-32bit-4.1.3_02-0.5 is installed
  • OR xen-tools-4.1.3_02-0.5 is installed
  • OR xen-tools-domU-4.1.3_02-0.5 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • java-1_7_0-openjdk-1.7.0.95-0.17 is installed
  • OR java-1_7_0-openjdk-demo-1.7.0.95-0.17 is installed
  • OR java-1_7_0-openjdk-devel-1.7.0.95-0.17 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND libevent-2_0-5-2.0.21-4 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • bash-4.2-75 is installed
  • OR bash-doc-4.2-75 is installed
  • OR bash-lang-4.2-75 is installed
  • OR libreadline6-6.2-75 is installed
  • OR libreadline6-32bit-6.2-75 is installed
  • OR readline-doc-6.2-75 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND facter-2.0.2-6 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • coreutils-8.25-12 is installed
  • OR coreutils-lang-8.25-12 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND fetchmail-6.3.26-12 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed
  • AND djvulibre-3.5.27-3.8 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed
  • AND Package Information
  • typelib-1_0-JavaScriptCore-4_0-2.26.4-3.43 is installed
  • OR typelib-1_0-WebKit2-4_0-2.26.4-3.43 is installed
  • OR typelib-1_0-WebKit2WebExtension-4_0-2.26.4-3.43 is installed
  • OR webkit2gtk3-2.26.4-3.43 is installed
  • OR webkit2gtk3-devel-2.26.4-3.43 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Development Tools 15 is installed
  • AND Package Information
  • kernel-docs-4.12.14-25.13 is installed
  • OR kernel-obs-build-4.12.14-25.13 is installed
  • OR kernel-source-4.12.14-25.13 is installed
  • OR kernel-syms-4.12.14-25.13 is installed
  • OR kernel-vanilla-4.12.14-25.13 is installed
  • OR kernel-vanilla-base-4.12.14-25.13 is installed
  • OR lttng-modules-2.10.0-5.4 is installed
  • OR lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 is installed
  • AND Package Information
  • kernel-default-4.12.14-25.3 is installed
  • OR kernel-default-livepatch-4.12.14-25.3 is installed
  • OR kernel-livepatch-4_12_14-25_3-default-1-1.3 is installed
  • OR kernel-livepatch-SLE15_Update_1-1-1.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-197_15-default-2-2 is installed
  • OR kernel-livepatch-SLE15-SP1_Update_4-2-2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
  • AND Package Information
  • xen-4.12.1_06-3.9 is installed
  • OR xen-devel-4.12.1_06-3.9 is installed
  • OR xen-tools-4.12.1_06-3.9 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • libgoa-1_0-0-3.10.5-1 is installed
  • OR libgoa-backend-1_0-1-3.10.5-1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • git-2.12.3-27.5 is installed
  • OR git-core-2.12.3-27.5 is installed
  • OR git-doc-2.12.3-27.5 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND cifs-utils-6.5-8 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • dovecot22-2.2.31-19.11 is installed
  • OR dovecot22-backend-mysql-2.2.31-19.11 is installed
  • OR dovecot22-backend-pgsql-2.2.31-19.11 is installed
  • OR dovecot22-backend-sqlite-2.2.31-19.11 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • qemu-2.6.2-41.55 is installed
  • OR qemu-block-curl-2.6.2-41.55 is installed
  • OR qemu-block-rbd-2.6.2-41.55 is installed
  • OR qemu-block-ssh-2.6.2-41.55 is installed
  • OR qemu-guest-agent-2.6.2-41.55 is installed
  • OR qemu-ipxe-1.0.0-41.55 is installed
  • OR qemu-kvm-2.6.2-41.55 is installed
  • OR qemu-lang-2.6.2-41.55 is installed
  • OR qemu-seabios-1.9.1-41.55 is installed
  • OR qemu-sgabios-8-41.55 is installed
  • OR qemu-tools-2.6.2-41.55 is installed
  • OR qemu-vgabios-1.9.1-41.55 is installed
  • OR qemu-x86-2.6.2-41.55 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • dovecot22-2.2.31-19.11 is installed
  • OR dovecot22-backend-mysql-2.2.31-19.11 is installed
  • OR dovecot22-backend-pgsql-2.2.31-19.11 is installed
  • OR dovecot22-backend-sqlite-2.2.31-19.11 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • DirectFB-1.7.1-6 is installed
  • OR lib++dfb-1_7-1-1.7.1-6 is installed
  • OR libdirectfb-1_7-1-1.7.1-6 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libjavascriptcoregtk-4_0-18-2.24.4-2.47 is installed
  • OR libwebkit2gtk-4_0-37-2.24.4-2.47 is installed
  • OR typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47 is installed
  • OR typelib-1_0-WebKit2-4_0-2.24.4-2.47 is installed
  • OR webkit2gtk-4_0-injected-bundles-2.24.4-2.47 is installed
  • OR webkit2gtk3-2.24.4-2.47 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • perl-5.18.2-12.20 is installed
  • OR perl-32bit-5.18.2-12.20 is installed
  • OR perl-base-5.18.2-12.20 is installed
  • OR perl-doc-5.18.2-12.20 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND clamav-0.100.3-33.26 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libsndfile-1.0.25-36.16 is installed
  • OR libsndfile1-1.0.25-36.16 is installed
  • OR libsndfile1-32bit-1.0.25-36.16 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • libICE6-1.0.8-12 is installed
  • OR libICE6-32bit-1.0.8-12 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 15-LTSS is installed
  • AND permissions-20180125-3.21 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND Package Information
  • ffmpeg-3.4.2-4.17 is installed
  • OR libavcodec-devel-3.4.2-4.17 is installed
  • OR libavformat-devel-3.4.2-4.17 is installed
  • OR libavformat57-3.4.2-4.17 is installed
  • OR libavresample-devel-3.4.2-4.17 is installed
  • OR libavresample3-3.4.2-4.17 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • gpg2-2.0.24-9.3 is installed
  • OR gpg2-lang-2.0.24-9.3 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • glibc-2.22-62.22 is installed
  • OR glibc-32bit-2.22-62.22 is installed
  • OR glibc-devel-2.22-62.22 is installed
  • OR glibc-devel-32bit-2.22-62.22 is installed
  • OR glibc-html-2.22-62.22 is installed
  • OR glibc-i18ndata-2.22-62.22 is installed
  • OR glibc-info-2.22-62.22 is installed
  • OR glibc-locale-2.22-62.22 is installed
  • OR glibc-locale-32bit-2.22-62.22 is installed
  • OR glibc-profile-2.22-62.22 is installed
  • OR glibc-profile-32bit-2.22-62.22 is installed
  • OR nscd-2.22-62.22 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • libvirt-3.3.0-5.40 is installed
  • OR libvirt-admin-3.3.0-5.40 is installed
  • OR libvirt-client-3.3.0-5.40 is installed
  • OR libvirt-daemon-3.3.0-5.40 is installed
  • OR libvirt-daemon-config-network-3.3.0-5.40 is installed
  • OR libvirt-daemon-config-nwfilter-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-interface-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-libxl-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-lxc-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-network-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-nodedev-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-nwfilter-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-qemu-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-secret-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-storage-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-storage-core-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-storage-disk-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-storage-iscsi-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-storage-logical-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-storage-mpath-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-storage-rbd-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-storage-scsi-3.3.0-5.40 is installed
  • OR libvirt-daemon-hooks-3.3.0-5.40 is installed
  • OR libvirt-daemon-lxc-3.3.0-5.40 is installed
  • OR libvirt-daemon-qemu-3.3.0-5.40 is installed
  • OR libvirt-daemon-xen-3.3.0-5.40 is installed
  • OR libvirt-doc-3.3.0-5.40 is installed
  • OR libvirt-libs-3.3.0-5.40 is installed
  • OR libvirt-lock-sanlock-3.3.0-5.40 is installed
  • OR libvirt-nss-3.3.0-5.40 is installed
  • BACK