Oval Definition:	oval:org.opensuse.security:def:53591
Revision Date: 2020-12-01 Version: 1 Title: Security update for webkit2gtk3 (Important) Description: This update for webkit2gtk3 to version 2.26.4 fixes the following issues: Security issues fixed: - CVE-2019-8835: Fixed multiple memory corruption issues (bsc#1161719). - CVE-2019-8844: Fixed multiple memory corruption issues (bsc#1161719). - CVE-2019-8846: Fixed a use-after-free issue (bsc#1161719). - CVE-2020-3862: Fixed a memory handling issue (bsc#1163809). - CVE-2020-3864: Fixed a logic issue in the DOM object context handling (bsc#1163809). - CVE-2020-3865: Fixed a logic issue in the DOM object context handling (bsc#1163809). - CVE-2020-3867: Fixed an XSS issue (bsc#1163809). - CVE-2020-3868: Fixed multiple memory corruption issues that could have lead to arbitrary code execution (bsc#1163809). Non-security issues fixed: - Fixed issues while trying to play a video on NextCloud. - Fixed vertical alignment of text containing arabic diacritics. - Fixed build with icu 65.1. - Fixed page loading errors with websites using HSTS. - Fixed web process crash when displaying a KaTeX formula. - Fixed several crashes and rendering issues. - Switched to a single web process for Evolution and geary (bsc#1159329 glgo#GNOME/evolution#587). Family: unix Class: patch Status: Reference(s): 1005070 1005072 1005076 1010845 1035371 1039209 1039210 1039379 1039380 1056421 1056562 1056621 1056622 1057511 1060354 1060355 1060360 1060361 1060362 1060364 1159329 1161719 1163809 1174157 930683 943967 943968 943969 957517 963964 963968 963975 986566 989980 992966 998677 CVE-2011-1000 CVE-2012-3291 CVE-2012-6128 CVE-2013-1431 CVE-2013-7098 CVE-2014-0004 CVE-2014-9092 CVE-2015-2304 CVE-2015-3885 CVE-2015-5198 CVE-2015-5199 CVE-2015-5200 CVE-2015-8367 CVE-2015-8629 CVE-2015-8630 CVE-2015-8631 CVE-2016-10507 CVE-2016-5418 CVE-2016-5844 CVE-2016-6250 CVE-2016-6318 CVE-2016-6354 CVE-2016-8687 CVE-2016-8688 CVE-2016-8689 CVE-2016-9401 CVE-2016-9811 CVE-2017-14039 CVE-2017-14040 CVE-2017-14041 CVE-2017-14164 CVE-2017-14491 CVE-2017-14492 CVE-2017-14493 CVE-2017-14494 CVE-2017-14495 CVE-2017-14496 CVE-2017-15232 CVE-2017-5837 CVE-2017-5844 CVE-2017-6886 CVE-2017-6887 CVE-2017-6889 CVE-2017-6890 CVE-2017-6899 CVE-2019-8835 CVE-2019-8844 CVE-2019-8846 CVE-2020-14556 CVE-2020-14562 CVE-2020-14573 CVE-2020-14577 CVE-2020-14581 CVE-2020-14583 CVE-2020-14593 CVE-2020-14621 CVE-2020-3862 CVE-2020-3864 CVE-2020-3865 CVE-2020-3867 CVE-2020-3868 SUSE-SU-2015:1892-1 SUSE-SU-2016:0429-1 SUSE-SU-2016:2107-1 SUSE-SU-2016:2911-1 SUSE-SU-2017:1317-1 SUSE-SU-2017:2300-1 SUSE-SU-2017:2618-1 SUSE-SU-2017:2649-1 SUSE-SU-2020:0468-1 SUSE-SU-2020:2143-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 6-LTSS SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information MozillaThunderbird-52.7-lp150.2 is installed OR MozillaThunderbird-translations-common-52.7-lp150.2 is installed OR MozillaThunderbird-translations-other-52.7-lp150.2 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information docker-18.09.6_ce-lp151.2.6 is installed OR docker-bash-completion-18.09.6_ce-lp151.2.6 is installed OR docker-test-18.09.6_ce-lp151.2.6 is installed OR docker-zsh-completion-18.09.6_ce-lp151.2.6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information bind-libs-9.9.4P2-0.6 is installed OR bind-libs-32bit-9.9.4P2-0.6 is installed OR bind-utils-9.9.4P2-0.6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-31.6.0esr-0.8 is installed OR MozillaFirefox-translations-31.6.0esr-0.8 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information compat-openssl097g-0.9.7g-146.22.41 is installed OR compat-openssl097g-32bit-0.9.7g-146.22.41 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information libvdpau-0.8-3 is installed OR libvdpau1-0.8-3 is installed OR libvdpau1-32bit-0.8-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information cracklib-2.9.0-7 is installed OR libcrack2-2.9.0-7 is installed OR libcrack2-32bit-2.9.0-7 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information libarchive-3.1.2-25 is installed OR libarchive13-3.1.2-25 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libudisks2-0-2.1.3-1 is installed OR udisks2-2.1.3-1 is installed OR udisks2-lang-2.1.3-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information at-3.1.14-8.6 is installed OR libQtWebKit4-4.8.7+2.3.4-4.7 is installed OR libQtWebKit4-32bit-4.8.7+2.3.4-4.7 is installed OR libbonobo-2.32.1-16 is installed OR libbonobo-32bit-2.32.1-16 is installed OR libbonobo-lang-2.32.1-16 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND apache2-mod_perl-2.0.8-11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_40-default-4-2 is installed OR kgraft-patch-3_12_74-60_64_40-xen-4-2 is installed OR kgraft-patch-SLE12-SP1_Update_15-4-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libipa_hbac0-1.13.4-18 is installed OR libsss_idmap0-1.13.4-18 is installed OR libsss_sudo-1.13.4-18 is installed OR python-sssd-config-1.13.4-18 is installed OR sssd-1.13.4-18 is installed OR sssd-32bit-1.13.4-18 is installed OR sssd-ad-1.13.4-18 is installed OR sssd-ipa-1.13.4-18 is installed OR sssd-krb5-1.13.4-18 is installed OR sssd-krb5-common-1.13.4-18 is installed OR sssd-ldap-1.13.4-18 is installed OR sssd-proxy-1.13.4-18 is installed OR sssd-tools-1.13.4-18 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information res-signingkeys-3.0.37-52.23 is installed OR smt-3.0.37-52.23 is installed OR smt-support-3.0.37-52.23 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libvirt-2.0.0-27.61 is installed OR libvirt-client-2.0.0-27.61 is installed OR libvirt-daemon-2.0.0-27.61 is installed OR libvirt-daemon-config-network-2.0.0-27.61 is installed OR libvirt-daemon-config-nwfilter-2.0.0-27.61 is installed OR libvirt-daemon-driver-interface-2.0.0-27.61 is installed OR libvirt-daemon-driver-libxl-2.0.0-27.61 is installed OR libvirt-daemon-driver-lxc-2.0.0-27.61 is installed OR libvirt-daemon-driver-network-2.0.0-27.61 is installed OR libvirt-daemon-driver-nodedev-2.0.0-27.61 is installed OR libvirt-daemon-driver-nwfilter-2.0.0-27.61 is installed OR libvirt-daemon-driver-qemu-2.0.0-27.61 is installed OR libvirt-daemon-driver-secret-2.0.0-27.61 is installed OR libvirt-daemon-driver-storage-2.0.0-27.61 is installed OR libvirt-daemon-hooks-2.0.0-27.61 is installed OR libvirt-daemon-lxc-2.0.0-27.61 is installed OR libvirt-daemon-qemu-2.0.0-27.61 is installed OR libvirt-daemon-xen-2.0.0-27.61 is installed OR libvirt-doc-2.0.0-27.61 is installed OR libvirt-lock-sanlock-2.0.0-27.61 is installed OR libvirt-nss-2.0.0-27.61 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_74-92_38-default-12-2 is installed OR kgraft-patch-SLE12-SP2_Update_13-12-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libX11-6-1.6.2-11 is installed OR libX11-6-32bit-1.6.2-11 is installed OR libX11-data-1.6.2-11 is installed OR libX11-xcb1-1.6.2-11 is installed OR libX11-xcb1-32bit-1.6.2-11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libdcerpc-binding0-4.6.16+git.169.064abe062be-3.46 is installed OR libdcerpc-binding0-32bit-4.6.16+git.169.064abe062be-3.46 is installed OR libdcerpc0-4.6.16+git.169.064abe062be-3.46 is installed OR libdcerpc0-32bit-4.6.16+git.169.064abe062be-3.46 is installed OR libndr-krb5pac0-4.6.16+git.169.064abe062be-3.46 is installed OR libndr-krb5pac0-32bit-4.6.16+git.169.064abe062be-3.46 is installed OR libndr-nbt0-4.6.16+git.169.064abe062be-3.46 is installed OR libndr-nbt0-32bit-4.6.16+git.169.064abe062be-3.46 is installed OR libndr-standard0-4.6.16+git.169.064abe062be-3.46 is installed OR libndr-standard0-32bit-4.6.16+git.169.064abe062be-3.46 is installed OR libndr0-4.6.16+git.169.064abe062be-3.46 is installed OR libndr0-32bit-4.6.16+git.169.064abe062be-3.46 is installed OR libnetapi0-4.6.16+git.169.064abe062be-3.46 is installed OR libnetapi0-32bit-4.6.16+git.169.064abe062be-3.46 is installed OR libsamba-credentials0-4.6.16+git.169.064abe062be-3.46 is installed OR libsamba-credentials0-32bit-4.6.16+git.169.064abe062be-3.46 is installed OR libsamba-errors0-4.6.16+git.169.064abe062be-3.46 is installed OR libsamba-errors0-32bit-4.6.16+git.169.064abe062be-3.46 is installed OR libsamba-hostconfig0-4.6.16+git.169.064abe062be-3.46 is installed OR libsamba-hostconfig0-32bit-4.6.16+git.169.064abe062be-3.46 is installed OR libsamba-passdb0-4.6.16+git.169.064abe062be-3.46 is installed OR libsamba-passdb0-32bit-4.6.16+git.169.064abe062be-3.46 is installed OR libsamba-util0-4.6.16+git.169.064abe062be-3.46 is installed OR libsamba-util0-32bit-4.6.16+git.169.064abe062be-3.46 is installed OR libsamdb0-4.6.16+git.169.064abe062be-3.46 is installed OR libsamdb0-32bit-4.6.16+git.169.064abe062be-3.46 is installed OR libsmbclient0-4.6.16+git.169.064abe062be-3.46 is installed OR libsmbclient0-32bit-4.6.16+git.169.064abe062be-3.46 is installed OR libsmbconf0-4.6.16+git.169.064abe062be-3.46 is installed OR libsmbconf0-32bit-4.6.16+git.169.064abe062be-3.46 is installed OR libsmbldap0-4.6.16+git.169.064abe062be-3.46 is installed OR libsmbldap0-32bit-4.6.16+git.169.064abe062be-3.46 is installed OR libtevent-util0-4.6.16+git.169.064abe062be-3.46 is installed OR libtevent-util0-32bit-4.6.16+git.169.064abe062be-3.46 is installed OR libwbclient0-4.6.16+git.169.064abe062be-3.46 is installed OR libwbclient0-32bit-4.6.16+git.169.064abe062be-3.46 is installed OR samba-4.6.16+git.169.064abe062be-3.46 is installed OR samba-client-4.6.16+git.169.064abe062be-3.46 is installed OR samba-client-32bit-4.6.16+git.169.064abe062be-3.46 is installed OR samba-doc-4.6.16+git.169.064abe062be-3.46 is installed OR samba-libs-4.6.16+git.169.064abe062be-3.46 is installed OR samba-libs-32bit-4.6.16+git.169.064abe062be-3.46 is installed OR samba-winbind-4.6.16+git.169.064abe062be-3.46 is installed OR samba-winbind-32bit-4.6.16+git.169.064abe062be-3.46 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libssh2-1-1.4.3-20.14 is installed OR libssh2-1-32bit-1.4.3-20.14 is installed OR libssh2_org-1.4.3-20.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND binutils-2.32-9.33 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information MozillaFirefox-52.9.0esr-109.38 is installed OR MozillaFirefox-translations-52.9.0esr-109.38 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND libopenjp2-7-2.1.0-4.9 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information libjavascriptcoregtk-4_0-18-2.26.4-3.43 is installed OR libwebkit2gtk-4_0-37-2.26.4-3.43 is installed OR libwebkit2gtk3-lang-2.26.4-3.43 is installed OR webkit2gtk-4_0-injected-bundles-2.26.4-3.43 is installed OR webkit2gtk3-2.26.4-3.43 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information java-11-openjdk-11.0.8.0-3.45 is installed OR java-11-openjdk-demo-11.0.8.0-3.45 is installed OR java-11-openjdk-devel-11.0.8.0-3.45 is installed OR java-11-openjdk-headless-11.0.8.0-3.45 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND python-Django-1.8.9-1 is installed Definition Synopsis SUSE OpenStack Cloud 6-LTSS is installed AND python-PyYAML-5.1.2-26.12 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information gstreamer-plugins-base-1.8.3-13.3 is installed OR gstreamer-plugins-base-lang-1.8.3-13.3 is installed OR libgstallocators-1_0-0-1.8.3-13.3 is installed OR libgstapp-1_0-0-1.8.3-13.3 is installed OR libgstapp-1_0-0-32bit-1.8.3-13.3 is installed OR libgstaudio-1_0-0-1.8.3-13.3 is installed OR libgstaudio-1_0-0-32bit-1.8.3-13.3 is installed OR libgstfft-1_0-0-1.8.3-13.3 is installed OR libgstpbutils-1_0-0-1.8.3-13.3 is installed OR libgstpbutils-1_0-0-32bit-1.8.3-13.3 is installed OR libgstriff-1_0-0-1.8.3-13.3 is installed OR libgstrtp-1_0-0-1.8.3-13.3 is installed OR libgstrtsp-1_0-0-1.8.3-13.3 is installed OR libgstsdp-1_0-0-1.8.3-13.3 is installed OR libgsttag-1_0-0-1.8.3-13.3 is installed OR libgsttag-1_0-0-32bit-1.8.3-13.3 is installed OR libgstvideo-1_0-0-1.8.3-13.3 is installed OR libgstvideo-1_0-0-32bit-1.8.3-13.3 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND python-Twisted-15.2.1-9.5 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND python-urllib3-1.23-3.6 is installed
BACK