Oval Definition:	oval:org.opensuse.security:def:5416
Revision Date: 2020-12-02 Version: 1 Title: Security update for webkit2gtk3 (Important) Description: This update for webkit2gtk3 to version 2.26.4 fixes the following issues: Security issues fixed: - CVE-2019-8835: Fixed multiple memory corruption issues (bsc#1161719). - CVE-2019-8844: Fixed multiple memory corruption issues (bsc#1161719). - CVE-2019-8846: Fixed a use-after-free issue (bsc#1161719). - CVE-2020-3862: Fixed a memory handling issue (bsc#1163809). - CVE-2020-3864: Fixed a logic issue in the DOM object context handling (bsc#1163809). - CVE-2020-3865: Fixed a logic issue in the DOM object context handling (bsc#1163809). - CVE-2020-3867: Fixed an XSS issue (bsc#1163809). - CVE-2020-3868: Fixed multiple memory corruption issues that could have lead to arbitrary code execution (bsc#1163809). Non-security issues fixed: - Fixed issues while trying to play a video on NextCloud. - Fixed vertical alignment of text containing arabic diacritics. - Fixed build with icu 65.1. - Fixed page loading errors with websites using HSTS. - Fixed web process crash when displaying a KaTeX formula. - Fixed several crashes and rendering issues. - Switched to a single web process for Evolution and geary (bsc#1159329 glgo#GNOME/evolution#587). Family: unix Class: patch Status: Reference(s): 1133375 1159329 1161719 1163809 CVE-2004-2771 CVE-2007-6600 CVE-2009-0316 CVE-2009-1886 CVE-2009-1888 CVE-2009-2813 CVE-2009-2906 CVE-2009-2948 CVE-2009-3736 CVE-2009-4034 CVE-2009-4136 CVE-2010-0547 CVE-2010-0728 CVE-2010-0787 CVE-2010-0926 CVE-2010-1169 CVE-2010-1170 CVE-2010-1635 CVE-2010-1642 CVE-2010-2063 CVE-2010-2891 CVE-2010-3069 CVE-2010-3433 CVE-2011-0719 CVE-2011-1946 CVE-2011-2522 CVE-2011-2694 CVE-2011-2895 CVE-2012-0817 CVE-2012-0866 CVE-2012-0867 CVE-2012-0868 CVE-2012-0870 CVE-2012-1182 CVE-2012-2111 CVE-2012-2143 CVE-2012-2655 CVE-2012-3488 CVE-2012-3489 CVE-2012-5112 CVE-2012-5133 CVE-2012-6150 CVE-2013-0172 CVE-2013-0213 CVE-2013-0214 CVE-2013-0255 CVE-2013-0454 CVE-2013-1863 CVE-2013-1899 CVE-2013-1900 CVE-2013-1901 CVE-2013-1987 CVE-2013-4124 CVE-2013-4408 CVE-2013-4475 CVE-2013-4476 CVE-2013-4496 CVE-2013-6370 CVE-2013-6371 CVE-2013-6442 CVE-2013-6473 CVE-2013-6474 CVE-2013-6475 CVE-2013-6476 CVE-2014-0060 CVE-2014-0061 CVE-2014-0062 CVE-2014-0063 CVE-2014-0064 CVE-2014-0065 CVE-2014-0066 CVE-2014-0067 CVE-2014-0178 CVE-2014-0239 CVE-2014-0244 CVE-2014-1344 CVE-2014-1384 CVE-2014-1385 CVE-2014-1386 CVE-2014-1387 CVE-2014-1388 CVE-2014-1389 CVE-2014-1390 CVE-2014-1748 CVE-2014-2707 CVE-2014-3493 CVE-2014-3560 CVE-2014-4336 CVE-2014-4337 CVE-2014-4338 CVE-2014-7844 CVE-2014-8143 CVE-2014-8484 CVE-2014-8485 CVE-2014-8501 CVE-2014-8502 CVE-2014-8503 CVE-2014-8504 CVE-2014-8737 CVE-2014-8738 CVE-2015-0240 CVE-2015-1071 CVE-2015-1076 CVE-2015-1081 CVE-2015-1083 CVE-2015-1120 CVE-2015-1122 CVE-2015-1127 CVE-2015-1153 CVE-2015-1155 CVE-2015-2265 CVE-2015-2330 CVE-2015-3165 CVE-2015-3166 CVE-2015-3167 CVE-2015-3223 CVE-2015-3258 CVE-2015-3279 CVE-2015-3658 CVE-2015-3659 CVE-2015-3727 CVE-2015-3731 CVE-2015-3741 CVE-2015-3743 CVE-2015-3745 CVE-2015-3747 CVE-2015-3748 CVE-2015-3749 CVE-2015-3752 CVE-2015-5252 CVE-2015-5288 CVE-2015-5289 CVE-2015-5296 CVE-2015-5299 CVE-2015-5330 CVE-2015-5370 CVE-2015-5788 CVE-2015-5794 CVE-2015-5801 CVE-2015-5809 CVE-2015-5822 CVE-2015-5928 CVE-2015-7560 CVE-2015-8327 CVE-2015-8467 CVE-2015-8560 CVE-2016-2110 CVE-2016-2111 CVE-2016-2112 CVE-2016-2113 CVE-2016-2115 CVE-2016-2118 CVE-2016-2119 CVE-2019-8835 CVE-2019-8844 CVE-2019-8846 CVE-2019-9928 CVE-2020-3862 CVE-2020-3864 CVE-2020-3865 CVE-2020-3867 CVE-2020-3868 SUSE-SU-2020:0468-1 SUSE-SU-2020:1300-1 Platform(s): openSUSE 13.1 openSUSE 13.1 NonFree SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise for SAP 12 SUSE Linux Enterprise for SAP 12 SP1 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Live Patching 12 SP3 SUSE Linux Enterprise Module for Advanced Systems Management 12 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Point of Sale 12 SP2 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP1-LTSS SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Server for SAP Applications 12 SP1 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP4 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE OpenStack Cloud 5 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information libfreebl3-3.19.2.2-22.1 is installed OR libfreebl3-32bit-3.19.2.2-22.1 is installed OR libsoftokn3-3.19.2.2-22.1 is installed OR libsoftokn3-32bit-3.19.2.2-22.1 is installed OR mozilla-nss-3.19.2.2-22.1 is installed OR mozilla-nss-32bit-3.19.2.2-22.1 is installed OR mozilla-nss-tools-3.19.2.2-22.1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information java-1_7_0-openjdk-1.7.0.99-0.20.2 is installed OR java-1_7_0-openjdk-demo-1.7.0.99-0.20.2 is installed OR java-1_7_0-openjdk-devel-1.7.0.99-0.20.2 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information libXrender1-0.9.8-3 is installed OR libXrender1-32bit-0.9.8-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND binutils-2.26.1-9.12 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND ctags-5.8-7 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-38.8 is installed OR aaa_base-extras-13.2+git20140911.61c1681-38.8 is installed Definition Synopsis SUSE Linux Enterprise for SAP 12 is installed AND Package Information compat-libldap-2_3-0-2.3.37-18.13.4 is installed OR openldap2-2.4.41-18.13.4 is installed Definition Synopsis SUSE Linux Enterprise for SAP 12 SP1 is installed AND Package Information compat-openssl098-0.9.8j-97.1 is installed OR libopenssl0_9_8-0.9.8j-97.1 is installed Definition Synopsis SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND Package Information colord-gtk-lang-0.1.26-6 is installed OR libcolord-gtk1-0.1.26-6 is installed OR libcolord2-1.3.3-12 is installed OR libcolord2-32bit-1.3.3-12 is installed OR libcolorhug2-1.3.3-12 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-4_4_21-69-default-6-17 is installed OR kgraft-patch-SLE12-SP2_Update_0-6-17 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 SP3 is installed AND Package Information kgraft-patch-4_4_82-6_6-default-1-2.1 is installed OR kgraft-patch-SLE12-SP3_Update_2-1-2.1 is installed Definition Synopsis SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed AND Package Information salt-2016.11.4-46.7.1 is installed OR salt-api-2016.11.4-46.7.1 is installed OR salt-bash-completion-2016.11.4-46.7.1 is installed OR salt-cloud-2016.11.4-46.7.1 is installed OR salt-doc-2016.11.4-46.7.1 is installed OR salt-master-2016.11.4-46.7.1 is installed OR salt-minion-2016.11.4-46.7.1 is installed OR salt-proxy-2016.11.4-46.7.1 is installed OR salt-ssh-2016.11.4-46.7.1 is installed OR salt-syndic-2016.11.4-46.7.1 is installed OR salt-zsh-completion-2016.11.4-46.7.1 is installed Definition Synopsis SUSE Linux Enterprise Module for Containers 12 is installed AND Package Information sles12-docker-image-1.1.2-20160727 is installed OR sles12sp1-docker-image-1.0.5-20160727 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information java-1_6_0-ibm-1.6.0_sr16.1-5 is installed OR java-1_6_0-ibm-fonts-1.6.0_sr16.1-5 is installed OR java-1_6_0-ibm-jdbc-1.6.0_sr16.1-5 is installed OR java-1_6_0-ibm-plugin-1.6.0_sr16.1-5 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 12 is installed AND python-pycrypto-2.6.1-1 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 12 is installed AND Package Information libpython3_4m1_0-3.4.1-2 is installed OR python3-base-3.4.1-2 is installed Definition Synopsis SUSE Linux Enterprise Point of Sale 12 SP2 is installed AND python-pycrypto-2.6.1-10.3.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 is installed AND Package Information kdelibs4-4.1.3-8.18.1 is installed OR kdelibs4-core-4.1.3-8.18.1 is installed OR libkde4-4.1.3-8.18.1 is installed OR libkde4-32bit-4.1.3-8.18.1 is installed OR libkde4-x86-4.1.3-8.18.1 is installed OR libkdecore4-4.1.3-8.18.1 is installed OR libkdecore4-32bit-4.1.3-8.18.1 is installed OR libkdecore4-x86-4.1.3-8.18.1 is installed OR utempter-0.5.5-106.18 is installed OR utempter-32bit-0.5.5-106.18 is installed OR utempter-x86-0.5.5-106.18 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP2 is installed AND apache2-mod_perl-2.0.4-40.19 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP3 is installed AND LibVNCServer-0.9.1-154.24 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP4 is installed AND unzip-6.00-11.13.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND Package Information colord-gtk-lang-0.1.25-3 is installed OR libcolord-gtk1-0.1.25-3 is installed OR libcolord2-1.1.7-2 is installed OR libcolord2-32bit-1.1.7-2 is installed OR libcolorhug2-1.1.7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-9 is installed OR aaa_base-extras-13.2+git20140911.61c1681-9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information qemu-2.6.2-31.2 is installed OR qemu-arm-2.6.2-31.2 is installed OR qemu-block-curl-2.6.2-31.2 is installed OR qemu-block-rbd-2.6.2-31.2 is installed OR qemu-block-ssh-2.6.2-31.2 is installed OR qemu-guest-agent-2.6.2-31.2 is installed OR qemu-ipxe-1.0.0-31.2 is installed OR qemu-kvm-2.6.2-31.2 is installed OR qemu-lang-2.6.2-31.2 is installed OR qemu-ppc-2.6.2-31.2 is installed OR qemu-s390-2.6.2-31.2 is installed OR qemu-seabios-1.9.1-31.2 is installed OR qemu-sgabios-8-31.2 is installed OR qemu-tools-2.6.2-31.2 is installed OR qemu-vgabios-1.9.1-31.2 is installed OR qemu-x86-2.6.2-31.2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND libmusicbrainz4-2.1.5-27 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information at-3.1.14-8.6 is installed OR flex-2.5.37-8 is installed OR flex-32bit-2.5.37-8 is installed OR libQtWebKit4-4.8.7+2.3.4-4.7 is installed OR libQtWebKit4-32bit-4.8.7+2.3.4-4.7 is installed OR libbonobo-2.32.1-16 is installed OR libbonobo-32bit-2.32.1-16 is installed OR libbonobo-doc-2.32.1-16 is installed OR libbonobo-lang-2.32.1-16 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information libjavascriptcoregtk-4_0-18-2.26.4-3.43 is installed OR libwebkit2gtk-4_0-37-2.26.4-3.43 is installed OR libwebkit2gtk3-lang-2.26.4-3.43 is installed OR webkit2gtk-4_0-injected-bundles-2.26.4-3.43 is installed OR webkit2gtk3-2.26.4-3.43 is installed Definition Synopsis SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information curl-7.37.0-28 is installed OR libcurl4-7.37.0-28 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 12 is installed AND Package Information libmysqlclient-devel-10.0.29-20.23 is installed OR libmysqlclient18-10.0.29-20.23 is installed OR libmysqlclient18-32bit-10.0.29-20.23 is installed OR libmysqlclient_r18-10.0.29-20.23 is installed OR libmysqld-devel-10.0.29-20.23 is installed OR libmysqld18-10.0.29-20.23 is installed OR mariadb-10.0.29-20.23 is installed OR mariadb-client-10.0.29-20.23 is installed OR mariadb-errormessages-10.0.29-20.23 is installed OR mariadb-tools-10.0.29-20.23 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 12 SP1 is installed AND Package Information compat-openssl098-0.9.8j-94 is installed OR libopenssl0_9_8-0.9.8j-94 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information gstreamer-plugins-base-1.12.5-3.3 is installed OR gstreamer-plugins-base-lang-1.12.5-3.3 is installed OR libgstallocators-1_0-0-1.12.5-3.3 is installed OR libgstapp-1_0-0-1.12.5-3.3 is installed OR libgstaudio-1_0-0-1.12.5-3.3 is installed OR libgstfft-1_0-0-1.12.5-3.3 is installed OR libgstpbutils-1_0-0-1.12.5-3.3 is installed OR libgstriff-1_0-0-1.12.5-3.3 is installed OR libgstrtp-1_0-0-1.12.5-3.3 is installed OR libgstrtsp-1_0-0-1.12.5-3.3 is installed OR libgstsdp-1_0-0-1.12.5-3.3 is installed OR libgsttag-1_0-0-1.12.5-3.3 is installed OR libgstvideo-1_0-0-1.12.5-3.3 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND LibVNCServer-devel-0.9.1-154.24 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 is installed AND accountsservice-devel-0.6.35-1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND libXrandr-devel-1.5.0-6 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND Package Information FastCGI-2.4.0-168 is installed OR FastCGI-devel-2.4.0-168 is installed OR perl-FastCGI-2.4.0-168 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 is installed AND Package Information ImageMagick-6.8.8.1-5 is installed OR libMagick++-6_Q16-3-6.8.8.1-5 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-5 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND Package Information libvirt-1.2.18.4-11.7 is installed OR libvirt-client-32bit-1.2.18.4-11.7 is installed
BACK