OVAL Reference oval:org.opensuse.security:def:53460

Oval Definition:

oval:org.opensuse.security:def:53460

Revision Date:	2020-12-01	Version:	1
Title:	Security update for webkit2gtk3 (Important)
Description:	This update for webkit2gtk3 to version 2.28.1 fixes the following issues: Security issues fixed: - CVE-2020-10018: Fixed a denial of service because the m_deferredFocusedNodeChange data structure was mishandled (bsc#1165528). - CVE-2020-11793: Fixed a potential arbitrary code execution caused by a use-after-free vulnerability (bsc#1169658). Non-security issues fixed: - Add API to enable Process Swap on (Cross-site) Navigation. - Add user messages API for the communication with the web extension. - Add support for same-site cookies. - Service workers are enabled by default. - Add support for Pointer Lock API. - Add flatpak sandbox support. - Make ondemand hardware acceleration policy never leave accelerated compositing mode. - Always use a light theme for rendering form controls. - Add about:gpu to show information about the graphics stack.
Family:	unix	Class:	patch
Status:		Reference(s):	1027519 1034849 1055695 1056278 1056280 1056281 1056282 1068648 1075992 1165528 1169658 1174910 1174913 662458 676471 800024 889207 897662 899908 903279 908151 920870 928547 931448 937086 940413 942262 942690 943989 944309 945345 951844 953233 957805 958390 959514 960341 960857 962336 962846 962872 963572 964461 964727 965319 966054 966573 967640 968497 968687 968812 968813 969016 970604 970609 970892 970911 970948 970955 970956 970958 970970 971049 971124 971126 971159 971170 971600 971628 971793 971947 972003 972068 972174 972335 972780 972844 972891 972951 973378 973556 973855 974418 974646 974692 975371 975488 975772 975945 975947 976739 976821 976868 977582 977685 978401 978527 978822 979213 979347 983143 CVE-2012-4425 CVE-2012-4453 CVE-2013-0211 CVE-2013-2142 CVE-2013-6435 CVE-2014-8118 CVE-2014-9474 CVE-2014-9717 CVE-2015-2304 CVE-2015-7554 CVE-2016-1583 CVE-2016-2185 CVE-2016-2186 CVE-2016-2188 CVE-2016-2847 CVE-2016-3134 CVE-2016-3136 CVE-2016-3137 CVE-2016-3138 CVE-2016-3140 CVE-2016-3627 CVE-2016-3689 CVE-2016-3951 CVE-2016-4482 CVE-2016-4486 CVE-2016-4569 CVE-2016-5104 CVE-2016-8637 CVE-2017-13194 CVE-2017-14316 CVE-2017-14317 CVE-2017-14318 CVE-2017-14319 CVE-2017-16844 CVE-2017-18233 CVE-2017-18234 CVE-2017-18236 CVE-2017-18238 CVE-2017-3289 CVE-2017-3509 CVE-2017-3511 CVE-2017-3512 CVE-2017-3514 CVE-2017-3526 CVE-2017-3533 CVE-2017-3539 CVE-2017-3544 CVE-2018-7728 CVE-2018-7730 CVE-2020-10018 CVE-2020-11793 CVE-2020-14361 CVE-2020-14362 SUSE-SU-2015:0667-1 SUSE-SU-2016:0160-1 SUSE-SU-2016:1204-1 SUSE-SU-2016:1696-1 SUSE-SU-2017:1400-1 SUSE-SU-2017:2519-1 SUSE-SU-2018:0173-1 SUSE-SU-2018:0181-1 SUSE-SU-2020:1109-1 SUSE-SU-2020:2398-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information accountsservice-0.6.45-lp150.2 is installed OR accountsservice-lang-0.6.45-lp150.2 is installed OR libaccountsservice0-0.6.45-lp150.2 is installed OR typelib-1_0-AccountsService-1_0-0.6.45-lp150.2 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND transfig-3.2.6a-lp151.4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information compat-openssl097g-0.9.7g-146.22 is installed OR compat-openssl097g-32bit-0.9.7g-146.22 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND cabextract-1.2-2.10 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information MozillaFirefox-38.5.0esr-28 is installed OR MozillaFirefox-translations-38.5.0esr-28 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information libarchive-3.1.2-9 is installed OR libarchive13-3.1.2-9 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information kernel-default-3.12.59-60.41 is installed OR kernel-default-devel-3.12.59-60.41 is installed OR kernel-default-extra-3.12.59-60.41 is installed OR kernel-devel-3.12.59-60.41 is installed OR kernel-macros-3.12.59-60.41 is installed OR kernel-source-3.12.59-60.41 is installed OR kernel-syms-3.12.59-60.41 is installed OR kernel-xen-3.12.59-60.41 is installed OR kernel-xen-devel-3.12.59-60.41 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information xen-4.7.3_04-43.12 is installed OR xen-libs-4.7.3_04-43.12 is installed OR xen-libs-32bit-4.7.3_04-43.12 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information imobiledevice-tools-1.2.0-7 is installed OR libimobiledevice6-1.2.0-7 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND dracut-044.1-9 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information gdm-3.10.0.1-23 is installed OR gdm-branding-upstream-3.10.0.1-23 is installed OR gdm-lang-3.10.0.1-23 is installed OR gdmflexiserver-3.10.0.1-23 is installed OR libgdm1-3.10.0.1-23 is installed OR typelib-1_0-Gdm-1_0-3.10.0.1-23 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information postgresql94-9.4.13-21.5 is installed OR postgresql94-contrib-9.4.13-21.5 is installed OR postgresql94-docs-9.4.13-21.5 is installed OR postgresql94-server-9.4.13-21.5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information bind-9.9.9P1-46 is installed OR bind-chrootenv-9.9.9P1-46 is installed OR bind-doc-9.9.9P1-46 is installed OR bind-libs-9.9.9P1-46 is installed OR bind-libs-32bit-9.9.9P1-46 is installed OR bind-utils-9.9.9P1-46 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information res-signingkeys-3.0.37-52.23 is installed OR smt-3.0.37-52.23 is installed OR smt-support-3.0.37-52.23 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_121-92_80-default-6-2 is installed OR kgraft-patch-SLE12-SP2_Update_22-6-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information curl-7.37.0-37.43 is installed OR libcurl4-7.37.0-37.43 is installed OR libcurl4-32bit-7.37.0-37.43 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information gstreamer-plugins-bad-1.8.3-17 is installed OR gstreamer-plugins-bad-lang-1.8.3-17 is installed OR libgstadaptivedemux-1_0-0-1.8.3-17 is installed OR libgstbadaudio-1_0-0-1.8.3-17 is installed OR libgstbadbase-1_0-0-1.8.3-17 is installed OR libgstbadvideo-1_0-0-1.8.3-17 is installed OR libgstbasecamerabinsrc-1_0-0-1.8.3-17 is installed OR libgstcodecparsers-1_0-0-1.8.3-17 is installed OR libgstgl-1_0-0-1.8.3-17 is installed OR libgstmpegts-1_0-0-1.8.3-17 is installed OR libgstphotography-1_0-0-1.8.3-17 is installed OR libgsturidownloader-1_0-0-1.8.3-17 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information dovecot22-2.2.31-19.17 is installed OR dovecot22-backend-mysql-2.2.31-19.17 is installed OR dovecot22-backend-pgsql-2.2.31-19.17 is installed OR dovecot22-backend-sqlite-2.2.31-19.17 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libpolkit0-0.113-5.18 is installed OR polkit-0.113-5.18 is installed OR typelib-1_0-Polkit-1_0-0.113-5.18 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_175-94_79-default-5-2 is installed OR kgraft-patch-SLE12-SP3_Update_23-5-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information liblouis-2.6.4-6.6 is installed OR liblouis-data-2.6.4-6.6 is installed OR liblouis9-2.6.4-6.6 is installed OR python-louis-2.6.4-6.6 is installed OR python3-louis-2.6.4-6.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information glib2-lang-2.48.2-10 is installed OR glib2-tools-2.48.2-10 is installed OR libgio-2_0-0-2.48.2-10 is installed OR libgio-2_0-0-32bit-2.48.2-10 is installed OR libglib-2_0-0-2.48.2-10 is installed OR libglib-2_0-0-32bit-2.48.2-10 is installed OR libgmodule-2_0-0-2.48.2-10 is installed OR libgmodule-2_0-0-32bit-2.48.2-10 is installed OR libgobject-2_0-0-2.48.2-10 is installed OR libgobject-2_0-0-32bit-2.48.2-10 is installed OR libgthread-2_0-0-2.48.2-10 is installed OR libgthread-2_0-0-32bit-2.48.2-10 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information libjavascriptcoregtk-4_0-18-2.28.1-3.49 is installed OR libwebkit2gtk-4_0-37-2.28.1-3.49 is installed OR libwebkit2gtk3-lang-2.28.1-3.49 is installed OR webkit2gtk-4_0-injected-bundles-2.28.1-3.49 is installed OR webkit2gtk3-2.28.1-3.49 is installed OR webkit2gtk3-devel-2.28.1-3.49 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND python-pycrypto-2.6.1-2 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information gpg2-2.0.24-9.3 is installed OR gpg2-lang-2.0.24-9.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 9 is installed AND haproxy-1.6.11-11.3 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND squid-3.5.21-26.17 is installed

BACK