Oval Definition:oval:org.opensuse.security:def:57063
Revision Date:2021-08-03Version:1
Title:Security update for webkit2gtk3 (Important)
Description:

This update for webkit2gtk3 fixes the following issues:

Update to version 2.32.3:

- CVE-2021-21775: Fixed a use-after-free vulnerability in the way certain events are processed for ImageLoader objects. A specially crafted web page can lead to a potential information leak and further memory corruption. A victim must be tricked into visiting a malicious web page to trigger this vulnerability. (bsc#1188697) - CVE-2021-21779: Fixed a use-after-free vulnerability in the way that WebKit GraphicsContext handles certain events. A specially crafted web page can lead to a potential information leak and further memory corruption. A victim must be tricked into visiting a malicious web page to trigger this vulnerability. (bsc#1188697) - CVE-2021-30663: An integer overflow was addressed with improved input validation. (bsc#1188697) - CVE-2021-30665: A memory corruption issue was addressed with improved state management. (bsc#1188697) - CVE-2021-30689: A logic issue was addressed with improved state management. (bsc#1188697) - CVE-2021-30720: A logic issue was addressed with improved restrictions. (bsc#1188697) - CVE-2021-30734: Multiple memory corruption issues were addressed with improved memory handling. (bsc#1188697) - CVE-2021-30744: A cross-origin issue with iframe elements was addressed with improved tracking of security origins. (bsc#1188697) - CVE-2021-30749: Multiple memory corruption issues were addressed with improved memory handling. (bsc#1188697) - CVE-2021-30758: A type confusion issue was addressed with improved state handling. (bsc#1188697) - CVE-2021-30795: A use after free issue was addressed with improved memory management. (bsc#1188697) - CVE-2021-30797: This issue was addressed with improved checks. (bsc#1188697) - CVE-2021-30799: Multiple memory corruption issues were addressed with improved memory handling. (bsc#1188697)
Family:unixClass:patch
Status:Reference(s):1001459
1006796
1007600
1009254
1011057
1012985
1013496
1013669
1015400
1018088
1020353
1021868
1023287
1024200
1027149
1028217
1028391
1029497
1030531
1030552
1031515
1033960
1034405
1034849
1035531
1035738
1037182
1037183
1037994
1038544
1038564
1038879
1038883
1038981
1038982
1039348
1039354
1039456
1039721
1039864
1039882
1039883
1039885
1040069
1041160
1041429
1041431
1042696
1042832
1042863
1044125
1045327
1045487
1045922
1046107
1048275
1048788
1049645
1049882
1053148
1053152
1053317
1056588
1056982
1057179
1058410
1058507
1058524
1059863
1062471
1062520
1063667
1064388
1068032
1070727
1071853
1087200
1089039
1093536
1094462
1103367
1107874
1108308
1109465
1109845
1111331
1117473
1120946
1123482
1124525
1133810
1140868
1145665
1149323
1188697
856774
860250
863764
878240
922855
922871
971031
986924
993099
994364
994598
CVE-2009-3700
CVE-2009-3826
CVE-2013-2003
CVE-2015-5191
CVE-2016-10251
CVE-2016-9583
CVE-2016-9600
CVE-2016-9811
CVE-2017-1000363
CVE-2017-1000365
CVE-2017-1000380
CVE-2017-10661
CVE-2017-11176
CVE-2017-12153
CVE-2017-12154
CVE-2017-12762
CVE-2017-13080
CVE-2017-14051
CVE-2017-14106
CVE-2017-14140
CVE-2017-15265
CVE-2017-15274
CVE-2017-15649
CVE-2017-17083
CVE-2017-17084
CVE-2017-17085
CVE-2017-3289
CVE-2017-3509
CVE-2017-3511
CVE-2017-3512
CVE-2017-3514
CVE-2017-3526
CVE-2017-3533
CVE-2017-3539
CVE-2017-3544
CVE-2017-5398
CVE-2017-5400
CVE-2017-5401
CVE-2017-5402
CVE-2017-5404
CVE-2017-5405
CVE-2017-5407
CVE-2017-5408
CVE-2017-5409
CVE-2017-5410
CVE-2017-5498
CVE-2017-5715
CVE-2017-6850
CVE-2017-7482
CVE-2017-7487
CVE-2017-7518
CVE-2017-7541
CVE-2017-7542
CVE-2017-7889
CVE-2017-8831
CVE-2017-8890
CVE-2017-8924
CVE-2017-8925
CVE-2017-9074
CVE-2017-9075
CVE-2017-9076
CVE-2017-9077
CVE-2017-9242
CVE-2018-0737
CVE-2018-10811
CVE-2018-10916
CVE-2018-12126
CVE-2018-12127
CVE-2018-12130
CVE-2018-16151
CVE-2018-16152
CVE-2018-17540
CVE-2018-5388
CVE-2019-11091
CVE-2019-11709
CVE-2019-11710
CVE-2019-11711
CVE-2019-11712
CVE-2019-11713
CVE-2019-11714
CVE-2019-11715
CVE-2019-11716
CVE-2019-11717
CVE-2019-11718
CVE-2019-11719
CVE-2019-11720
CVE-2019-11721
CVE-2019-11723
CVE-2019-11724
CVE-2019-11725
CVE-2019-11727
CVE-2019-11728
CVE-2019-11729
CVE-2019-11730
CVE-2019-11733
CVE-2019-11735
CVE-2019-11736
CVE-2019-11738
CVE-2019-11740
CVE-2019-11742
CVE-2019-11743
CVE-2019-11744
CVE-2019-11746
CVE-2019-11747
CVE-2019-11748
CVE-2019-11749
CVE-2019-11750
CVE-2019-11751
CVE-2019-11752
CVE-2019-11753
CVE-2019-9811
CVE-2019-9812
CVE-2021-21775
CVE-2021-21779
CVE-2021-30663
CVE-2021-30665
CVE-2021-30689
CVE-2021-30720
CVE-2021-30734
CVE-2021-30744
CVE-2021-30749
CVE-2021-30758
CVE-2021-30795
CVE-2021-30797
CVE-2021-30799
SUSE-SU-2017:0211-1
SUSE-SU-2017:0702-1
SUSE-SU-2017:0714-1
SUSE-SU-2017:0953-1
SUSE-SU-2017:1400-1
SUSE-SU-2017:2908-1
SUSE-SU-2017:3436-1
SUSE-SU-2018:0041-1
SUSE-SU-2018:2492-1
SUSE-SU-2018:3074-1
SUSE-SU-2019:0642-1
SUSE-SU-2019:1954-1
SUSE-SU-2019:2620-1
SUSE-SU-2019:3266-1
SUSE-SU-2021:2600-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND mailx-12.5-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • libzzip-0-13-0.13.69-lp151.4.3 is installed
  • OR libzzip-0-13-32bit-0.13.69-lp151.4.3 is installed
  • OR zziplib-0.13.69-lp151.4.3 is installed
  • OR zziplib-devel-0.13.69-lp151.4.3 is installed
  • OR zziplib-devel-32bit-0.13.69-lp151.4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • MozillaFirefox-68.1.0-109.89 is installed
  • OR MozillaFirefox-branding-SLE-68-32.8 is installed
  • OR MozillaFirefox-translations-common-68.1.0-109.89 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • jasper-1.900.14-194 is installed
  • OR libjasper1-1.900.14-194 is installed
  • OR libjasper1-32bit-1.900.14-194 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kernel-default-3.12.74-60.64.63 is installed
  • OR kernel-default-base-3.12.74-60.64.63 is installed
  • OR kernel-default-devel-3.12.74-60.64.63 is installed
  • OR kernel-default-man-3.12.74-60.64.63 is installed
  • OR kernel-devel-3.12.74-60.64.63 is installed
  • OR kernel-macros-3.12.74-60.64.63 is installed
  • OR kernel-source-3.12.74-60.64.63 is installed
  • OR kernel-syms-3.12.74-60.64.63 is installed
  • OR kernel-xen-3.12.74-60.64.63 is installed
  • OR kernel-xen-base-3.12.74-60.64.63 is installed
  • OR kernel-xen-devel-3.12.74-60.64.63 is installed
  • OR kgraft-patch-3_12_74-60_64_63-default-1-2 is installed
  • OR kgraft-patch-3_12_74-60_64_63-xen-1-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_22-1-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • libXcursor1-1.1.14-3 is installed
  • OR libXcursor1-32bit-1.1.14-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND clamav-0.100.1-33.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • libmysqlclient18-10.0.35-29.20 is installed
  • OR libmysqlclient18-32bit-10.0.35-29.20 is installed
  • OR mariadb-10.0.35-29.20 is installed
  • OR mariadb-client-10.0.35-29.20 is installed
  • OR mariadb-errormessages-10.0.35-29.20 is installed
  • OR mariadb-tools-10.0.35-29.20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_90-92_50-default-9-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_15-9-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • dbus-1-glib-0.100.2-3 is installed
  • OR dbus-1-glib-32bit-0.100.2-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • libecpg6-10.9-1.12 is installed
  • OR libpq5-10.9-1.12 is installed
  • OR libpq5-32bit-10.9-1.12 is installed
  • OR postgresql10-10.9-1.12 is installed
  • OR postgresql10-contrib-10.9-1.12 is installed
  • OR postgresql10-docs-10.9-1.12 is installed
  • OR postgresql10-libs-10.9-1.12 is installed
  • OR postgresql10-plperl-10.9-1.12 is installed
  • OR postgresql10-plpython-10.9-1.12 is installed
  • OR postgresql10-pltcl-10.9-1.12 is installed
  • OR postgresql10-server-10.9-1.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • libjavascriptcoregtk-4_0-18-2.32.3-2.66.1 is installed
  • OR libwebkit2gtk-4_0-37-2.32.3-2.66.1 is installed
  • OR libwebkit2gtk3-lang-2.32.3-2.66.1 is installed
  • OR typelib-1_0-JavaScriptCore-4_0-2.32.3-2.66.1 is installed
  • OR typelib-1_0-WebKit2-4_0-2.32.3-2.66.1 is installed
  • OR typelib-1_0-WebKit2WebExtension-4_0-2.32.3-2.66.1 is installed
  • OR webkit2gtk-4_0-injected-bundles-2.32.3-2.66.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • ghostscript-9.25-23.13 is installed
  • OR ghostscript-x11-9.25-23.13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • libopenssl-1_0_0-devel-1.0.2p-3.3 is installed
  • OR libopenssl1_0_0-1.0.2p-3.3 is installed
  • OR libopenssl1_0_0-32bit-1.0.2p-3.3 is installed
  • OR libopenssl1_0_0-hmac-1.0.2p-3.3 is installed
  • OR libopenssl1_0_0-hmac-32bit-1.0.2p-3.3 is installed
  • OR openssl-1_0_0-1.0.2p-3.3 is installed
  • OR openssl-1_0_0-doc-1.0.2p-3.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • libecpg6-10.5-1.3 is installed
  • OR libpq5-10.5-1.3 is installed
  • OR libpq5-32bit-10.5-1.3 is installed
  • OR postgresql-init-10-17.20 is installed
  • OR postgresql10-10.5-1.3 is installed
  • OR postgresql10-contrib-10.5-1.3 is installed
  • OR postgresql10-docs-10.5-1.3 is installed
  • OR postgresql10-libs-10.5-1.3 is installed
  • OR postgresql10-server-10.5-1.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • libpython2_7-1_0-2.7.13-28.31 is installed
  • OR libpython2_7-1_0-32bit-2.7.13-28.31 is installed
  • OR python-2.7.13-28.31 is installed
  • OR python-32bit-2.7.13-28.31 is installed
  • OR python-base-2.7.13-28.31 is installed
  • OR python-base-32bit-2.7.13-28.31 is installed
  • OR python-curses-2.7.13-28.31 is installed
  • OR python-demo-2.7.13-28.31 is installed
  • OR python-devel-2.7.13-28.31 is installed
  • OR python-doc-2.7.13-28.31 is installed
  • OR python-doc-pdf-2.7.13-28.31 is installed
  • OR python-gdbm-2.7.13-28.31 is installed
  • OR python-idle-2.7.13-28.31 is installed
  • OR python-tk-2.7.13-28.31 is installed
  • OR python-xml-2.7.13-28.31 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • libgcrypt-1.6.1-16.68 is installed
  • OR libgcrypt20-1.6.1-16.68 is installed
  • OR libgcrypt20-32bit-1.6.1-16.68 is installed
  • OR libgcrypt20-hmac-1.6.1-16.68 is installed
  • OR libgcrypt20-hmac-32bit-1.6.1-16.68 is installed
    • BACK