Oval Definition:	oval:org.opensuse.security:def:58229
Revision Date: 2020-12-01 Version: 1 Title: Security update for webkit2gtk3 (Important) Description: This update for webkit2gtk3 to version 2.22.6 fixes the following issues: Security issues fixed: - CVE-2019-6212: Fixed multiple memory corruption vulnerabilities which could allow arbitrary code execution during the processing of special crafted web-content. - CVE-2019-6215: Fixed a type confusion vulnerability which could allow arbitrary code execution during the processing of special crafted web-content. - CVE-2019-6216: Fixed multiple memory corruption vulnerabilities which could allow arbitrary code execution during the processing of special crafted web-content. - CVE-2019-6217: Fixed multiple memory corruption vulnerabilities which could allow arbitrary code execution during the processing of special crafted web-content. - CVE-2019-6226: Fixed multiple memory corruption vulnerabilities which could allow arbitrary code execution during the processing of special crafted web-content. - CVE-2019-6227: Fixed a memory corruption vulnerability which could allow arbitrary code execution during the processing of special crafted web-content. - CVE-2019-6229: Fixed a logic issue by improving validation which could allow arbitrary code execution during the processing of special crafted web-content. - CVE-2019-6233: Fixed a memory corruption vulnerability which could allow arbitrary code execution during the processing of special crafted web-content. - CVE-2019-6234: Fixed a memory corruption vulnerability which could allow arbitrary code execution during the processing of special crafted web-content. Other issues addressed: - Update to version 2.22.6 (bsc#1124937). - Kinetic scrolling slow down smoothly when reaching the ends of pages, instead of abruptly, to better match the GTK+ behaviour. - Fixed Web inspector magnifier under Wayland. - Fixed garbled rendering of some websites (e.g. YouTube) while scrolling under X11. - Fixed several crashes, race conditions, and rendering issues. Family: unix Class: patch Status: Reference(s): 1015187 1024051 1056427 1058058 1068032 1075087 1079405 1079869 1080157 1083302 1083303 1087082 1090953 1091041 1091427 1092289 1092885 1093215 1094019 1094325 1094725 1100112 1124937 1131493 1151021 1171252 1171254 1173369 1174662 1175193 1175194 1176409 1176412 1178666 1178667 1178668 943457 959329 CVE-2016-9933 CVE-2017-5715 CVE-2017-5838 CVE-2017-7500 CVE-2017-7501 CVE-2017-9798 CVE-2018-3639 CVE-2018-5732 CVE-2018-5733 CVE-2019-14835 CVE-2019-5953 CVE-2019-6212 CVE-2019-6215 CVE-2019-6216 CVE-2019-6217 CVE-2019-6226 CVE-2019-6227 CVE-2019-6229 CVE-2019-6233 CVE-2019-6234 CVE-2020-12653 CVE-2020-12654 CVE-2020-14349 CVE-2020-14350 CVE-2020-14392 CVE-2020-14393 CVE-2020-15011 CVE-2020-25694 CVE-2020-25695 CVE-2020-25696 CVE-2020-9862 CVE-2020-9893 CVE-2020-9894 CVE-2020-9895 CVE-2020-9915 CVE-2020-9925 SUSE-SU-2016:3211-1 SUSE-SU-2017:0966-1 SUSE-SU-2017:2542-1 SUSE-SU-2018:0812-1 SUSE-SU-2018:2631-2 SUSE-SU-2019:0511-1 SUSE-SU-2019:0956-1 SUSE-SU-2020:1475-1 SUSE-SU-2020:2048-1 SUSE-SU-2020:2232-1 SUSE-SU-2020:2661-1 SUSE-SU-2020:3464-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information vim-8.0.1568-lp150.3 is installed OR vim-data-8.0.1568-lp150.3 is installed OR vim-data-common-8.0.1568-lp150.3 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information evince-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR evince-devel-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR evince-lang-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR evince-plugin-comicsdocument-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR evince-plugin-djvudocument-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR evince-plugin-dvidocument-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR evince-plugin-pdfdocument-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR evince-plugin-psdocument-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR evince-plugin-tiffdocument-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR evince-plugin-xpsdocument-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR libevdocument3-4-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR libevview3-3-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR nautilus-evince-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR typelib-1_0-EvinceDocument-3_0-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR typelib-1_0-EvinceView-3_0-3.26.0+20180128.1bd86963-lp151.4.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND gd-2.1.0-20 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libvirt-2.0.0-27.45 is installed OR libvirt-client-2.0.0-27.45 is installed OR libvirt-daemon-2.0.0-27.45 is installed OR libvirt-daemon-config-network-2.0.0-27.45 is installed OR libvirt-daemon-config-nwfilter-2.0.0-27.45 is installed OR libvirt-daemon-driver-interface-2.0.0-27.45 is installed OR libvirt-daemon-driver-libxl-2.0.0-27.45 is installed OR libvirt-daemon-driver-lxc-2.0.0-27.45 is installed OR libvirt-daemon-driver-network-2.0.0-27.45 is installed OR libvirt-daemon-driver-nodedev-2.0.0-27.45 is installed OR libvirt-daemon-driver-nwfilter-2.0.0-27.45 is installed OR libvirt-daemon-driver-qemu-2.0.0-27.45 is installed OR libvirt-daemon-driver-secret-2.0.0-27.45 is installed OR libvirt-daemon-driver-storage-2.0.0-27.45 is installed OR libvirt-daemon-hooks-2.0.0-27.45 is installed OR libvirt-daemon-lxc-2.0.0-27.45 is installed OR libvirt-daemon-qemu-2.0.0-27.45 is installed OR libvirt-daemon-xen-2.0.0-27.45 is installed OR libvirt-doc-2.0.0-27.45 is installed OR libvirt-lock-sanlock-2.0.0-27.45 is installed OR libvirt-nss-2.0.0-27.45 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information python3-rpm-4.11.2-16.21 is installed OR rpm-4.11.2-16.21 is installed OR rpm-32bit-4.11.2-16.21 is installed OR rpm-build-4.11.2-16.21 is installed OR rpm-python-4.11.2-16.21 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_101-default-5-2 is installed OR kgraft-patch-SLE12-SP2_Update_27-5-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libX11-6-1.6.2-11 is installed OR libX11-6-32bit-1.6.2-11 is installed OR libX11-data-1.6.2-11 is installed OR libX11-xcb1-1.6.2-11 is installed OR libX11-xcb1-32bit-1.6.2-11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libecpg6-10.9-1.12 is installed OR libpq5-10.9-1.12 is installed OR libpq5-32bit-10.9-1.12 is installed OR postgresql10-10.9-1.12 is installed OR postgresql10-contrib-10.9-1.12 is installed OR postgresql10-docs-10.9-1.12 is installed OR postgresql10-libs-10.9-1.12 is installed OR postgresql10-plperl-10.9-1.12 is installed OR postgresql10-plpython-10.9-1.12 is installed OR postgresql10-pltcl-10.9-1.12 is installed OR postgresql10-server-10.9-1.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information pam_radius-1.3.16-239.4 is installed OR pam_radius-32bit-1.3.16-239.4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information nfs-client-1.3.0-34.22 is installed OR nfs-doc-1.3.0-34.22 is installed OR nfs-kernel-server-1.3.0-34.22 is installed OR nfs-utils-1.3.0-34.22 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.40-38.34 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.40-38.34 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.40-38.34 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.40-38.34 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information krb5-1.12.5-40.28 is installed OR krb5-32bit-1.12.5-40.28 is installed OR krb5-client-1.12.5-40.28 is installed OR krb5-doc-1.12.5-40.28 is installed OR krb5-plugin-kdb-ldap-1.12.5-40.28 is installed OR krb5-plugin-preauth-otp-1.12.5-40.28 is installed OR krb5-plugin-preauth-pkinit-1.12.5-40.28 is installed OR krb5-server-1.12.5-40.28 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information libjavascriptcoregtk-4_0-18-2.22.6-2.35 is installed OR libwebkit2gtk-4_0-37-2.22.6-2.35 is installed OR libwebkit2gtk3-lang-2.22.6-2.35 is installed OR typelib-1_0-JavaScriptCore-4_0-2.22.6-2.35 is installed OR typelib-1_0-WebKit2-4_0-2.22.6-2.35 is installed OR typelib-1_0-WebKit2WebExtension-4_0-2.22.6-2.35 is installed OR webkit2gtk-4_0-injected-bundles-2.22.6-2.35 is installed OR webkit2gtk3-2.22.6-2.35 is installed OR webkit2gtk3-devel-2.22.6-2.35 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND ucode-intel-20190618-13.47 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ruby2.1-rubygem-rails-html-sanitizer-1.0.3-8.8 is installed OR rubygem-rails-html-sanitizer-1.0.3-8.8 is installed
BACK