OVAL Reference oval:org.opensuse.security:def:51628

Oval Definition:

oval:org.opensuse.security:def:51628

Revision Date:	2021-08-03	Version:	1
Title:	Security update for webkit2gtk3 (Important)
Description:	This update for webkit2gtk3 fixes the following issues: Update to version 2.32.3: - CVE-2021-21775: Fixed a use-after-free vulnerability in the way certain events are processed for ImageLoader objects. A specially crafted web page can lead to a potential information leak and further memory corruption. A victim must be tricked into visiting a malicious web page to trigger this vulnerability. (bsc#1188697) - CVE-2021-21779: Fixed a use-after-free vulnerability in the way that WebKit GraphicsContext handles certain events. A specially crafted web page can lead to a potential information leak and further memory corruption. A victim must be tricked into visiting a malicious web page to trigger this vulnerability. (bsc#1188697) - CVE-2021-30663: An integer overflow was addressed with improved input validation. (bsc#1188697) - CVE-2021-30665: A memory corruption issue was addressed with improved state management. (bsc#1188697) - CVE-2021-30689: A logic issue was addressed with improved state management. (bsc#1188697) - CVE-2021-30720: A logic issue was addressed with improved restrictions. (bsc#1188697) - CVE-2021-30734: Multiple memory corruption issues were addressed with improved memory handling. (bsc#1188697) - CVE-2021-30744: A cross-origin issue with iframe elements was addressed with improved tracking of security origins. (bsc#1188697) - CVE-2021-30749: Multiple memory corruption issues were addressed with improved memory handling. (bsc#1188697) - CVE-2021-30758: A type confusion issue was addressed with improved state handling. (bsc#1188697) - CVE-2021-30795: A use after free issue was addressed with improved memory management. (bsc#1188697) - CVE-2021-30797: This issue was addressed with improved checks. (bsc#1188697) - CVE-2021-30799: Multiple memory corruption issues were addressed with improved memory handling. (bsc#1188697)
Family:	unix	Class:	patch
Status:		Reference(s):	1013708 1013712 1013893 1015171 1050244 1051510 1051858 1055117 1058115 1061840 1065600 1065729 1071995 1083647 1083710 1085030 1086301 1086313 1086314 1089895 1102247 1109911 1114279 1118338 1119222 1119850 1120386 1123022 1123080 1124356 1127034 1127315 1129770 1130972 1133021 1134097 1134390 1134399 1134973 1135335 1135642 1137458 1137534 1137535 1137584 1137609 1137827 1139358 1140133 1140322 1140652 1140903 1140945 1141320 1141401 1141402 1141452 1141453 1141454 1141478 1142023 1142112 1142220 1142221 1142254 1142350 1142351 1142354 1142359 1142450 1142701 1142868 1143003 1143045 1143105 1143185 1143189 1143191 1143507 1143959 1144333 1146569 1146571 1146572 1146702 1151910 1151927 1153165 1153917 1154217 1154243 1154824 1156286 1157155 1157157 1157692 1158013 1158021 1158026 1158265 1158819 1159028 1159198 1159271 1159285 1159394 1159483 1159484 1159569 1159588 1159841 1159908 1159909 1159910 1159911 1159955 1160195 1160210 1160211 1160218 1160305 1160433 1160442 1160476 1160498 1160560 1160755 1160756 1160784 1160787 1160802 1160803 1160804 1160917 1160966 1161087 1161514 1161518 1161522 1161523 1161549 1161552 1161555 1161674 1161931 1161933 1161934 1161935 1161936 1161937 1161951 1162067 1162109 1162139 1162680 1162928 1162929 1162931 1162936 1162937 1163178 1163971 1164051 1164069 1164078 1164705 1164712 1164727 1164728 1164729 1164730 1164731 1164732 1164733 1164734 1164735 1164871 1165111 1165741 1165873 1165881 1165984 1165985 1166969 1167421 1167423 1167629 1168075 1168276 1168295 1168424 1168670 1168829 1168854 1169095 1169390 1169514 1169521 1169625 1169850 1169851 1170056 1170345 1170617 1170618 1170621 1170778 1170901 1171098 1171189 1171191 1171195 1171202 1171205 1171217 1171218 1171219 1171220 1171437 1171689 1171982 1171983 1172221 1172307 1172317 1172453 1172458 1173159 1173160 1173161 1173359 1174120 1178666 1178667 1178668 1188697 CVE-2006-4484 CVE-2009-0159 CVE-2009-0758 CVE-2009-1252 CVE-2009-5029 CVE-2010-2244 CVE-2011-1002 CVE-2011-2513 CVE-2011-2514 CVE-2011-3377 CVE-2012-3406 CVE-2012-3422 CVE-2012-3423 CVE-2012-4412 CVE-2012-4540 CVE-2013-0242 CVE-2013-1914 CVE-2013-1926 CVE-2013-1927 CVE-2013-2207 CVE-2013-4237 CVE-2013-4332 CVE-2013-4349 CVE-2013-4458 CVE-2013-5211 CVE-2013-7423 CVE-2014-0475 CVE-2014-4043 CVE-2014-5119 CVE-2014-6040 CVE-2014-7817 CVE-2014-8121 CVE-2014-9293 CVE-2014-9294 CVE-2014-9295 CVE-2014-9296 CVE-2014-9297 CVE-2014-9298 CVE-2014-9402 CVE-2014-9761 CVE-2015-1472 CVE-2015-1473 CVE-2015-1781 CVE-2015-1798 CVE-2015-1799 CVE-2015-2590 CVE-2015-2597 CVE-2015-2601 CVE-2015-2613 CVE-2015-2619 CVE-2015-2621 CVE-2015-2625 CVE-2015-2627 CVE-2015-2628 CVE-2015-2632 CVE-2015-2637 CVE-2015-2638 CVE-2015-2659 CVE-2015-2664 CVE-2015-2808 CVE-2015-3405 CVE-2015-4000 CVE-2015-4729 CVE-2015-4731 CVE-2015-4732 CVE-2015-4733 CVE-2015-4734 CVE-2015-4736 CVE-2015-4748 CVE-2015-4749 CVE-2015-4760 CVE-2015-4803 CVE-2015-4805 CVE-2015-4806 CVE-2015-4810 CVE-2015-4835 CVE-2015-4840 CVE-2015-4842 CVE-2015-4843 CVE-2015-4844 CVE-2015-4860 CVE-2015-4868 CVE-2015-4872 CVE-2015-4881 CVE-2015-4882 CVE-2015-4883 CVE-2015-4893 CVE-2015-4901 CVE-2015-4902 CVE-2015-4903 CVE-2015-4906 CVE-2015-4908 CVE-2015-4911 CVE-2015-4916 CVE-2015-5234 CVE-2015-5235 CVE-2015-7547 CVE-2015-7575 CVE-2015-7691 CVE-2015-7692 CVE-2015-7701 CVE-2015-7702 CVE-2015-7703 CVE-2015-7704 CVE-2015-7705 CVE-2015-7848 CVE-2015-7849 CVE-2015-7850 CVE-2015-7851 CVE-2015-7852 CVE-2015-7853 CVE-2015-7854 CVE-2015-7855 CVE-2015-7871 CVE-2015-8126 CVE-2015-8776 CVE-2015-8777 CVE-2015-8778 CVE-2015-8779 CVE-2016-0402 CVE-2016-0448 CVE-2016-0466 CVE-2016-0475 CVE-2016-0483 CVE-2016-0494 CVE-2016-0636 CVE-2016-0686 CVE-2016-0687 CVE-2016-0695 CVE-2016-1234 CVE-2016-3075 CVE-2016-3425 CVE-2016-3426 CVE-2016-3427 CVE-2016-3458 CVE-2016-3485 CVE-2016-3498 CVE-2016-3500 CVE-2016-3503 CVE-2016-3508 CVE-2016-3511 CVE-2016-3550 CVE-2016-3552 CVE-2016-3587 CVE-2016-3598 CVE-2016-3606 CVE-2016-3610 CVE-2016-3706 CVE-2016-4429 CVE-2016-9797 CVE-2016-9798 CVE-2016-9802 CVE-2016-9917 CVE-2018-1000199 CVE-2018-20855 CVE-2019-1125 CVE-2019-11810 CVE-2019-13631 CVE-2019-13648 CVE-2019-14283 CVE-2019-14284 CVE-2019-14615 CVE-2019-14853 CVE-2019-14859 CVE-2019-14896 CVE-2019-14897 CVE-2019-15142 CVE-2019-15143 CVE-2019-15144 CVE-2019-15145 CVE-2019-16994 CVE-2019-17015 CVE-2019-17016 CVE-2019-17017 CVE-2019-17021 CVE-2019-17022 CVE-2019-17024 CVE-2019-17026 CVE-2019-19036 CVE-2019-19045 CVE-2019-19054 CVE-2019-19318 CVE-2019-19319 CVE-2019-19447 CVE-2019-19462 CVE-2019-19768 CVE-2019-19770 CVE-2019-19965 CVE-2019-19966 CVE-2019-20054 CVE-2019-20095 CVE-2019-20096 CVE-2019-20810 CVE-2019-20812 CVE-2019-3701 CVE-2019-3814 CVE-2019-9455 CVE-2019-9458 CVE-2020-0543 CVE-2020-10690 CVE-2020-10700 CVE-2020-10704 CVE-2020-10711 CVE-2020-10720 CVE-2020-10730 CVE-2020-10732 CVE-2020-10745 CVE-2020-10751 CVE-2020-10757 CVE-2020-10760 CVE-2020-10942 CVE-2020-11494 CVE-2020-11608 CVE-2020-11609 CVE-2020-11669 CVE-2020-12114 CVE-2020-12464 CVE-2020-12652 CVE-2020-12653 CVE-2020-12654 CVE-2020-12655 CVE-2020-12656 CVE-2020-12657 CVE-2020-12769 CVE-2020-13143 CVE-2020-14303 CVE-2020-25694 CVE-2020-25695 CVE-2020-25696 CVE-2020-2732 CVE-2020-7053 CVE-2020-8428 CVE-2020-8631 CVE-2020-8632 CVE-2020-8647 CVE-2020-8648 CVE-2020-8649 CVE-2020-8834 CVE-2020-8992 CVE-2020-9383 CVE-2021-21775 CVE-2021-21779 CVE-2021-30663 CVE-2021-30665 CVE-2021-30689 CVE-2021-30720 CVE-2021-30734 CVE-2021-30744 CVE-2021-30749 CVE-2021-30758 CVE-2021-30795 CVE-2021-30797 CVE-2021-30799 SUSE-SU-2019:0414-1 SUSE-SU-2019:1353-1 SUSE-SU-2019:2452-1 SUSE-SU-2019:2891-2 SUSE-SU-2020:0142-1 SUSE-SU-2020:0585-1 SUSE-SU-2020:1663-1 SUSE-SU-2020:1948-1 SUSE-SU-2020:3425-1 SUSE-SU-2021:2600-1
Platform(s):	openSUSE Leap 15.0 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Public Cloud 15 SUSE Linux Enterprise Module for Python2 packages 15 SP2 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND yast2-users-4.0.5-lp150.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information libpython2_6-1_0-2.6.9-0.33 is installed OR libpython2_6-1_0-32bit-2.6.9-0.33 is installed OR python-2.6.9-0.33 is installed OR python-base-2.6.9-0.33 is installed OR python-base-32bit-2.6.9-0.33 is installed OR python-curses-2.6.9-0.33 is installed OR python-devel-2.6.9-0.33 is installed OR python-tk-2.6.9-0.33 is installed OR python-xml-2.6.9-0.33 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information kernel-default-3.0.101-71 is installed OR kernel-default-base-3.0.101-71 is installed OR kernel-default-devel-3.0.101-71 is installed OR kernel-default-extra-3.0.101-71 is installed OR kernel-pae-3.0.101-71 is installed OR kernel-pae-base-3.0.101-71 is installed OR kernel-pae-devel-3.0.101-71 is installed OR kernel-pae-extra-3.0.101-71 is installed OR kernel-source-3.0.101-71 is installed OR kernel-syms-3.0.101-71 is installed OR kernel-trace-3.0.101-71 is installed OR kernel-trace-devel-3.0.101-71 is installed OR kernel-xen-3.0.101-71 is installed OR kernel-xen-base-3.0.101-71 is installed OR kernel-xen-devel-3.0.101-71 is installed OR kernel-xen-extra-3.0.101-71 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information avahi-0.6.31-20 is installed OR avahi-lang-0.6.31-20 is installed OR libavahi-client3-0.6.31-20 is installed OR libavahi-client3-32bit-0.6.31-20 is installed OR libavahi-common3-0.6.31-20 is installed OR libavahi-common3-32bit-0.6.31-20 is installed OR libavahi-core7-0.6.31-20 is installed OR libdns_sd-0.6.31-20 is installed OR libdns_sd-32bit-0.6.31-20 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information ntp-4.2.8p4-1 is installed OR ntp-doc-4.2.8p4-1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information glibc-2.22-49 is installed OR glibc-32bit-2.22-49 is installed OR glibc-devel-2.22-49 is installed OR glibc-devel-32bit-2.22-49 is installed OR glibc-i18ndata-2.22-49 is installed OR glibc-locale-2.22-49 is installed OR glibc-locale-32bit-2.22-49 is installed OR nscd-2.22-49 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information glibc-2.22-61 is installed OR glibc-32bit-2.22-61 is installed OR glibc-devel-2.22-61 is installed OR glibc-devel-32bit-2.22-61 is installed OR glibc-i18ndata-2.22-61 is installed OR glibc-locale-2.22-61 is installed OR glibc-locale-32bit-2.22-61 is installed OR nscd-2.22-61 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information at-3.1.14-8.6 is installed OR libQtWebKit4-4.8.7+2.3.4-4.7 is installed OR libQtWebKit4-32bit-4.8.7+2.3.4-4.7 is installed OR libbonobo-2.32.1-16 is installed OR libbonobo-32bit-2.32.1-16 is installed OR libbonobo-lang-2.32.1-16 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND djvulibre-3.5.27-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2 is installed AND Package Information python-ecdsa-0.13.3-3.3 is installed OR python2-ecdsa-0.13.3-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information bluez-5.48-5.16 is installed OR bluez-auto-enable-devices-5.48-5.16 is installed OR bluez-test-5.48-5.16 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 15 is installed AND Package Information cloud-init-19.4-5.24 is installed OR cloud-init-config-suse-19.4-5.24 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Python2 packages 15 SP2 is installed AND Package Information samba-4.11.11+git.180.2cf3b203f07-4.5 is installed OR samba-ad-dc-4.11.11+git.180.2cf3b203f07-4.5 is installed OR samba-dsdb-modules-4.11.11+git.180.2cf3b203f07-4.5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information dovecot23-2.3.3-4.7 is installed OR dovecot23-backend-mysql-2.3.3-4.7 is installed OR dovecot23-backend-pgsql-2.3.3-4.7 is installed OR dovecot23-backend-sqlite-2.3.3-4.7 is installed OR dovecot23-devel-2.3.3-4.7 is installed OR dovecot23-fts-2.3.3-4.7 is installed OR dovecot23-fts-lucene-2.3.3-4.7 is installed OR dovecot23-fts-solr-2.3.3-4.7 is installed OR dovecot23-fts-squat-2.3.3-4.7 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information libecpg6-12.5-3.15 is installed OR postgresql12-12.5-3.15 is installed OR postgresql12-contrib-12.5-3.15 is installed OR postgresql12-devel-12.5-3.15 is installed OR postgresql12-docs-12.5-3.15 is installed OR postgresql12-plperl-12.5-3.15 is installed OR postgresql12-plpython-12.5-3.15 is installed OR postgresql12-pltcl-12.5-3.15 is installed OR postgresql12-server-12.5-3.15 is installed OR postgresql12-server-devel-12.5-3.15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information dracut-037-66 is installed OR dracut-fips-037-66 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_60-default-5-2 is installed OR kgraft-patch-3_12_74-60_64_60-xen-5-2 is installed OR kgraft-patch-SLE12-SP1_Update_21-5-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information dracut-044-87 is installed OR dracut-fips-044-87 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information xen-4.7.5_04-43.33 is installed OR xen-doc-html-4.7.5_04-43.33 is installed OR xen-libs-4.7.5_04-43.33 is installed OR xen-libs-32bit-4.7.5_04-43.33 is installed OR xen-tools-4.7.5_04-43.33 is installed OR xen-tools-domU-4.7.5_04-43.33 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information openssh-7.2p2-74.25 is installed OR openssh-askpass-gnome-7.2p2-74.25 is installed OR openssh-fips-7.2p2-74.25 is installed OR openssh-helpers-7.2p2-74.25 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_85-default-3-2 is installed OR kgraft-patch-SLE12-SP2_Update_23-3-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libhogweed2-2.7.1-12 is installed OR libhogweed2-32bit-2.7.1-12 is installed OR libnettle4-2.7.1-12 is installed OR libnettle4-32bit-2.7.1-12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libshibsp-lite6-2.5.5-6.6 is installed OR libshibsp6-2.5.5-6.6 is installed OR shibboleth-sp-2.5.5-6.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libsolv-0.6.36-2.27.19 is installed OR libsolv-tools-0.6.36-2.27.19 is installed OR libzypp-16.20.2-27.60 is installed OR perl-solv-0.6.36-2.27.19 is installed OR python-solv-0.6.36-2.27.19 is installed OR zypper-1.13.54-18.40 is installed OR zypper-log-1.13.54-18.40 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libpcap-1.8.1-10.3 is installed OR libpcap1-1.8.1-10.3 is installed OR tcpdump-4.9.2-14.14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information g3utils-1.1.36-58.3 is installed OR mgetty-1.1.36-58.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information MozillaFirefox-52.9.0esr-109.38 is installed OR MozillaFirefox-translations-52.9.0esr-109.38 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND Package Information libjavascriptcoregtk-4_0-18-2.32.3-2.66.1 is installed OR libwebkit2gtk-4_0-37-2.32.3-2.66.1 is installed OR libwebkit2gtk3-lang-2.32.3-2.66.1 is installed OR typelib-1_0-JavaScriptCore-4_0-2.32.3-2.66.1 is installed OR typelib-1_0-WebKit2-4_0-2.32.3-2.66.1 is installed OR typelib-1_0-WebKit2WebExtension-4_0-2.32.3-2.66.1 is installed OR webkit2gtk-4_0-injected-bundles-2.32.3-2.66.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information kernel-default-4.12.14-150.52 is installed OR kernel-default-base-4.12.14-150.52 is installed OR kernel-default-devel-4.12.14-150.52 is installed OR kernel-devel-4.12.14-150.52 is installed OR kernel-docs-4.12.14-150.52 is installed OR kernel-macros-4.12.14-150.52 is installed OR kernel-obs-build-4.12.14-150.52 is installed OR kernel-source-4.12.14-150.52 is installed OR kernel-syms-4.12.14-150.52 is installed OR kernel-vanilla-4.12.14-150.52 is installed OR kernel-vanilla-base-4.12.14-150.52 is installed OR reiserfs-kmp-default-4.12.14-150.52 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information MozillaThunderbird-68.4.1-3.66 is installed OR MozillaThunderbird-translations-common-68.4.1-3.66 is installed OR MozillaThunderbird-translations-other-68.4.1-3.66 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND ucode-intel-20180703-13.25 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information ardana-monasca-8.0+git.1535031421.9262a47-3.12 is installed OR ardana-spark-8.0+git.1534267176.a5f3a22-3.6 is installed OR kafka-0.10.2.2-5.6 is installed OR openstack-monasca-api-2.2.1~dev24-3.6 is installed OR python-monasca-api-2.2.1~dev24-3.6 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND ucode-intel-20190618-13.47 is installed

BACK