OVAL Reference oval:org.opensuse.security:def:5439

Oval Definition:

oval:org.opensuse.security:def:5439

Revision Date:	2020-12-02	Version:	1
Title:	Security update for webkit2gtk3 (Important)
Description:	This update for webkit2gtk3 fixes the following issues: Security issue fixed: - CVE-2020-3899: Fixed a memory consumption issue that could have led to remote code execution (bsc#1170643). Non-security issues fixed: - Update to version 2.28.2 (bsc#1170643): + Fix excessive CPU usage due to GdkFrameClock not being stopped. + Fix UI process crash when EGL_WL_bind_wayland_display extension is not available. + Fix position of select popup menus in X11. + Fix playing of Youtube 'live stream'/H264 URLs. + Fix a crash under X11 when cairo uses xcb. + Fix several crashes and rendering issues.
Family:	unix	Class:	patch
Status:		Reference(s):	1170643 1173027 CVE-2006-7250 CVE-2007-6720 CVE-2008-5077 CVE-2008-5984 CVE-2009-0179 CVE-2009-0590 CVE-2009-0591 CVE-2009-0789 CVE-2009-0799 CVE-2009-0800 CVE-2009-1179 CVE-2009-1180 CVE-2009-1181 CVE-2009-1182 CVE-2009-1183 CVE-2009-1187 CVE-2009-1188 CVE-2009-1377 CVE-2009-1378 CVE-2009-1379 CVE-2009-1386 CVE-2009-1387 CVE-2009-1886 CVE-2009-1888 CVE-2009-2694 CVE-2009-2703 CVE-2009-2813 CVE-2009-2906 CVE-2009-2948 CVE-2009-3026 CVE-2009-3083 CVE-2009-3084 CVE-2009-3085 CVE-2009-3607 CVE-2009-3608 CVE-2009-3615 CVE-2009-3995 CVE-2009-3996 CVE-2010-0013 CVE-2010-0277 CVE-2010-0420 CVE-2010-0423 CVE-2010-0547 CVE-2010-0728 CVE-2010-0740 CVE-2010-0742 CVE-2010-0787 CVE-2010-1624 CVE-2010-1633 CVE-2010-2528 CVE-2010-2546 CVE-2010-2939 CVE-2010-3711 CVE-2010-3864 CVE-2010-5298 CVE-2011-0014 CVE-2011-1091 CVE-2011-1098 CVE-2011-1154 CVE-2011-1155 CVE-2011-2709 CVE-2011-3207 CVE-2011-3210 CVE-2011-3594 CVE-2011-4108 CVE-2011-4576 CVE-2011-4577 CVE-2011-4619 CVE-2012-0027 CVE-2012-0050 CVE-2012-0884 CVE-2012-1165 CVE-2012-1586 CVE-2012-2110 CVE-2012-2214 CVE-2012-2369 CVE-2012-2686 CVE-2012-3374 CVE-2012-4929 CVE-2012-6152 CVE-2013-0166 CVE-2013-0169 CVE-2013-0271 CVE-2013-0272 CVE-2013-0273 CVE-2013-0274 CVE-2013-1788 CVE-2013-1789 CVE-2013-1790 CVE-2013-4353 CVE-2013-4473 CVE-2013-4474 CVE-2013-6449 CVE-2013-6450 CVE-2013-6477 CVE-2013-6478 CVE-2013-6479 CVE-2013-6481 CVE-2013-6482 CVE-2013-6483 CVE-2013-6484 CVE-2013-6485 CVE-2013-6486 CVE-2013-6487 CVE-2014-0020 CVE-2014-0076 CVE-2014-0160 CVE-2014-0195 CVE-2014-0198 CVE-2014-0221 CVE-2014-0224 CVE-2014-3470 CVE-2014-3505 CVE-2014-3506 CVE-2014-3507 CVE-2014-3508 CVE-2014-3509 CVE-2014-3510 CVE-2014-3511 CVE-2014-3512 CVE-2014-3513 CVE-2014-3566 CVE-2014-3567 CVE-2014-3568 CVE-2014-3570 CVE-2014-3571 CVE-2014-3572 CVE-2014-3694 CVE-2014-3695 CVE-2014-3696 CVE-2014-3697 CVE-2014-3698 CVE-2014-3970 CVE-2014-5139 CVE-2014-8275 CVE-2015-0204 CVE-2015-0205 CVE-2015-0206 CVE-2015-0209 CVE-2015-0286 CVE-2015-0287 CVE-2015-0288 CVE-2015-0289 CVE-2015-0293 CVE-2015-1788 CVE-2015-1789 CVE-2015-1790 CVE-2015-1791 CVE-2015-1792 CVE-2015-3216 CVE-2015-4000 CVE-2015-8079 CVE-2015-8868 CVE-2016-1856 CVE-2016-1857 CVE-2016-2851 CVE-2016-4590 CVE-2016-4591 CVE-2016-4622 CVE-2016-4624 CVE-2020-3899 CVE-2020-8177 SUSE-SU-2020:1198-1 SUSE-SU-2020:1773-1
Platform(s):	openSUSE 13.1 openSUSE 13.1 NonFree SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise for SAP 12 SUSE Linux Enterprise for SAP 12 SP1 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Live Patching 12 SP3 SUSE Linux Enterprise Module for Advanced Systems Management 12 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for High Performance Computing 12 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP1-LTSS SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP2-LTSS SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Server for SAP Applications 12 SP1 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP4 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE OpenStack Cloud 5	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information popt-1.7-37.60.2 is installed OR popt-32bit-1.7-37.60.2 is installed OR rpm-4.4.2.3-37.60.2 is installed OR rpm-32bit-4.4.2.3-37.60.2 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information libvirt-1.2.5-12.3 is installed OR libvirt-client-1.2.5-12.3 is installed OR libvirt-client-32bit-1.2.5-12.3 is installed OR libvirt-doc-1.2.5-12.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information libgssglue1-0.4-3 is installed OR libgssglue1-32bit-0.4-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND cifs-utils-6.5-8 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information augeas-1.2.0-15 is installed OR augeas-lenses-1.2.0-15 is installed OR libaugeas0-1.2.0-15 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information augeas-1.2.0-17.3 is installed OR augeas-lenses-1.2.0-17.3 is installed OR libaugeas0-1.2.0-17.3 is installed
Definition Synopsis
SUSE Linux Enterprise for SAP 12 is installed AND Package Information compat-libldap-2_3-0-2.3.37-16.1 is installed OR openldap2-2.4.39-16.1 is installed
Definition Synopsis
SUSE Linux Enterprise for SAP 12 SP1 is installed AND Package Information bind-9.9.9P1-62.1 is installed OR bind-chrootenv-9.9.9P1-62.1 is installed OR bind-devel-9.9.9P1-62.1 is installed OR bind-doc-9.9.9P1-62.1 is installed OR bind-libs-9.9.9P1-62.1 is installed OR bind-libs-32bit-9.9.9P1-62.1 is installed OR bind-utils-9.9.9P1-62.1 is installed
Definition Synopsis
SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND Package Information dracut-044.2-15 is installed OR dracut-fips-044.2-15 is installed
Definition Synopsis
SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-4_4_59-92_17-default-9-2 is installed OR kgraft-patch-SLE12-SP2_Update_7-9-2 is installed
Definition Synopsis
SUSE Linux Enterprise Live Patching 12 SP3 is installed AND Package Information kgraft-patch-4_4_82-6_6-default-1-2.1 is installed OR kgraft-patch-SLE12-SP3_Update_2-1-2.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed AND Package Information puppet-3.8.5-15.3.3 is installed OR puppet-server-3.8.5-15.3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Containers 12 is installed AND docker-1.6.2-31 is installed
Definition Synopsis
SUSE Linux Enterprise Module for High Performance Computing 12 is installed AND Package Information libslurm29-16.05.8.1-5 is installed OR perl-slurm-16.05.8.1-5 is installed OR slurm-16.05.8.1-5 is installed OR slurm-auth-none-16.05.8.1-5 is installed OR slurm-devel-16.05.8.1-5 is installed OR slurm-doc-16.05.8.1-5 is installed OR slurm-lua-16.05.8.1-5 is installed OR slurm-munge-16.05.8.1-5 is installed OR slurm-pam_slurm-16.05.8.1-5 is installed OR slurm-plugins-16.05.8.1-5 is installed OR slurm-sched-wiki-16.05.8.1-5 is installed OR slurm-slurmdbd-16.05.8.1-5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information compat-openssl098-0.9.8j-87.1 is installed OR libopenssl0_9_8-0.9.8j-87.1 is installed OR libopenssl0_9_8-32bit-0.9.8j-87.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 12 is installed AND python-requests-2.3.0-1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 12 is installed AND Package Information libpython3_4m1_0-3.4.1-2 is installed OR python3-base-3.4.1-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 is installed AND Package Information libsndfile-1.0.17-172.14.1 is installed OR libsndfile-32bit-1.0.17-172.14.1 is installed OR libsndfile-x86-1.0.17-172.14.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP1-LTSS is installed AND Package Information MozillaFirefox-17.0.7esr-0.3.1 is installed OR MozillaFirefox-branding-SLED-7-0.6.9.31 is installed OR MozillaFirefox-translations-17.0.7esr-0.3.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP2 is installed AND Package Information evince-2.28.2-0.7.2 is installed OR evince-doc-2.28.2-0.7.2 is installed OR evince-lang-2.28.2-0.7.2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP3 is installed AND Package Information ant-1.7.1-20.9.53 is installed OR ant-trax-1.7.1-16.9.65 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP4 is installed AND Package Information xorg-x11-libs-7.4-8.26.44.1 is installed OR xorg-x11-libs-32bit-7.4-8.26.44.1 is installed OR xorg-x11-libs-x86-7.4-8.26.44.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND apache2-mod_nss-1.0.8-9 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information apache-commons-beanutils-1.9.2-1 is installed OR apache-commons-beanutils-javadoc-1.9.2-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information tar-1.27.1-11.1 is installed OR tar-lang-1.27.1-11.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libqt4-4.8.6-7 is installed OR libqt4-32bit-4.8.6-7 is installed OR libqt4-qt3support-4.8.6-7 is installed OR libqt4-qt3support-32bit-4.8.6-7 is installed OR libqt4-sql-4.8.6-7 is installed OR libqt4-sql-32bit-4.8.6-7 is installed OR libqt4-sql-mysql-4.8.6-7 is installed OR libqt4-sql-sqlite-4.8.6-7 is installed OR libqt4-x11-4.8.6-7 is installed OR libqt4-x11-32bit-4.8.6-7 is installed OR qt4-x11-tools-4.8.6-7 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information crash-7.2.1-2 is installed OR crash-kmp-default-7.2.1_k4.12.14_94.41-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND ft2demos-2.6.3-7.8 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 12 is installed AND Package Information kgraft-patch-3_12_60-52_63-default-4-2 is installed OR kgraft-patch-3_12_60-52_63-xen-4-2 is installed OR kgraft-patch-SLE12_Update_18-4-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 12 SP1 is installed AND Package Information kgraft-patch-3_12_69-60_64_32-default-4-3 is installed OR kgraft-patch-3_12_69-60_64_32-xen-4-3 is installed OR kgraft-patch-SLE12-SP1_Update_13-4-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information libjavascriptcoregtk-4_0-18-2.28.2-3.54 is installed OR libwebkit2gtk-4_0-37-2.28.2-3.54 is installed OR libwebkit2gtk3-lang-2.28.2-3.54 is installed OR webkit2gtk-4_0-injected-bundles-2.28.2-3.54 is installed OR webkit2gtk3-2.28.2-3.54 is installed OR webkit2gtk3-devel-2.28.2-3.54 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND Package Information cpp48-4.8.3+r212056-2.17 is installed OR gcc48-4.8.3+r212056-2.17 is installed OR gcc48-32bit-4.8.3+r212056-2.17 is installed OR gcc48-c++-4.8.3+r212056-2.17 is installed OR gcc48-fortran-4.8.3+r212056-2.17 is installed OR gcc48-fortran-32bit-4.8.3+r212056-2.17 is installed OR gcc48-info-4.8.3+r212056-2.17 is installed OR gcc48-locale-4.8.3+r212056-2.17 is installed OR libasan0-4.8.3+r212056-2.17 is installed OR libatomic1-4.8.3+r212056-2.17 is installed OR libgfortran3-4.8.3+r212056-2.17 is installed OR libgfortran3-32bit-4.8.3+r212056-2.17 is installed OR libitm1-4.8.3+r212056-2.17 is installed OR libquadmath0-4.8.3+r212056-2.17 is installed OR libquadmath0-32bit-4.8.3+r212056-2.17 is installed OR libstdc++48-devel-4.8.3+r212056-2.17 is installed OR libstdc++48-devel-32bit-4.8.3+r212056-2.17 is installed OR libtsan0-4.8.3+r212056-2.17 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 is installed AND Package Information ant-jmf-1.9.4-1 is installed OR ant-scripts-1.9.4-1 is installed OR ant-swing-1.9.4-1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND libevent-devel-2.0.21-4 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND MozillaFirefox-devel-52.9.0esr-109.38 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 is installed AND argyllcms-1.6.3-1 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND Package Information kernel-default-3.12.51-60.25.1 is installed OR kernel-default-extra-3.12.51-60.25.1 is installed

BACK