Oval Definition:	oval:org.opensuse.security:def:59211
Revision Date: 2020-12-01 Version: 1 Title: Security update for webkit2gtk3 (Important) Description: This update for webkit2gtk3 fixes the following issues: Security issue fixed: - CVE-2020-3899: Fixed a memory consumption issue that could have led to remote code execution (bsc#1170643). Non-security issues fixed: - Update to version 2.28.2 (bsc#1170643): + Fix excessive CPU usage due to GdkFrameClock not being stopped. + Fix UI process crash when EGL_WL_bind_wayland_display extension is not available. + Fix position of select popup menus in X11. + Fix playing of Youtube 'live stream'/H264 URLs. + Fix a crash under X11 when cairo uses xcb. + Fix the build in MIPS64. + Fix several crashes and rendering issues. Family: unix Class: patch Status: Reference(s): 1083424 1083630 1098531 1111853 1115375 1118597 1122292 1122299 1122706 1130246 1135715 1141780 1141782 1141783 1141784 1141785 1141786 1141787 1141789 1145383 1147021 1148931 1149792 1154162 1154824 1161167 1164871 1168930 1169605 1169740 1169786 1169936 1170302 1170643 1170741 1170939 1171098 1171195 1171202 1171218 1171219 1171355 1171689 1171698 1172221 1172317 1172651 1173334 1174910 1174913 CVE-2011-1521 CVE-2011-3389 CVE-2011-4944 CVE-2012-0845 CVE-2012-1150 CVE-2012-4502 CVE-2012-4503 CVE-2013-1752 CVE-2013-1753 CVE-2013-4238 CVE-2014-0021 CVE-2014-1912 CVE-2014-4650 CVE-2014-7185 CVE-2016-0772 CVE-2016-1000110 CVE-2016-1567 CVE-2016-5636 CVE-2016-5699 CVE-2017-12627 CVE-2018-11212 CVE-2018-12327 CVE-2018-19870 CVE-2018-19872 CVE-2018-7170 CVE-2018-8956 CVE-2019-11771 CVE-2019-11772 CVE-2019-11775 CVE-2019-14806 CVE-2019-2449 CVE-2019-2745 CVE-2019-2762 CVE-2019-2762 CVE-2019-2766 CVE-2019-2766 CVE-2019-2769 CVE-2019-2769 CVE-2019-2786 CVE-2019-2786 CVE-2019-2816 CVE-2019-2816 CVE-2019-2842 CVE-2019-2974 CVE-2019-3813 CVE-2019-4473 CVE-2019-7317 CVE-2019-7317 CVE-2019-8595 CVE-2019-8607 CVE-2019-8615 CVE-2019-8644 CVE-2019-8649 CVE-2019-8658 CVE-2019-8666 CVE-2019-8669 CVE-2019-8671 CVE-2019-8672 CVE-2019-8673 CVE-2019-8676 CVE-2019-8677 CVE-2019-8678 CVE-2019-8679 CVE-2019-8680 CVE-2019-8681 CVE-2019-8683 CVE-2019-8684 CVE-2019-8686 CVE-2019-8687 CVE-2019-8688 CVE-2019-8689 CVE-2019-8690 CVE-2020-0543 CVE-2020-0569 CVE-2020-10757 CVE-2020-11008 CVE-2020-11868 CVE-2020-12114 CVE-2020-12652 CVE-2020-12653 CVE-2020-12654 CVE-2020-12656 CVE-2020-13817 CVE-2020-14361 CVE-2020-14362 CVE-2020-15025 CVE-2020-3899 CVE-2020-5260 SUSE-SU-2018:3342-1 SUSE-SU-2019:0230-1 SUSE-SU-2019:2036-1 SUSE-SU-2019:2345-2 SUSE-SU-2019:2358-1 SUSE-SU-2020:0050-1 SUSE-SU-2020:0318-1 SUSE-SU-2020:1211-1 SUSE-SU-2020:1295-1 SUSE-SU-2020:1597-1 SUSE-SU-2020:1805-1 SUSE-SU-2020:2401-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 NonFree SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information libgcrypt20-1.8.2-lp150.4 is installed OR libgcrypt20-32bit-1.8.2-lp150.4 is installed Definition Synopsis openSUSE Leap 15.1 NonFree is installed AND opera-65.0.3467.62-lp151.2.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information ntp-4.2.8p12-64.8 is installed OR ntp-doc-4.2.8p12-64.8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.40-30.54 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information libjavascriptcoregtk-4_0-18-2.28.2-2.53 is installed OR libwebkit2gtk-4_0-37-2.28.2-2.53 is installed OR libwebkit2gtk3-lang-2.28.2-2.53 is installed OR typelib-1_0-JavaScriptCore-4_0-2.28.2-2.53 is installed OR typelib-1_0-WebKit2-4_0-2.28.2-2.53 is installed OR typelib-1_0-WebKit2WebExtension-4_0-2.28.2-2.53 is installed OR webkit2gtk-4_0-injected-bundles-2.28.2-2.53 is installed OR webkit2gtk3-2.28.2-2.53 is installed OR webkit2gtk3-devel-2.28.2-2.53 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND chrony-2.3-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libecpg6-10.9-1.12 is installed OR libpq5-10.9-1.12 is installed OR libpq5-32bit-10.9-1.12 is installed OR postgresql10-10.9-1.12 is installed OR postgresql10-contrib-10.9-1.12 is installed OR postgresql10-docs-10.9-1.12 is installed OR postgresql10-libs-10.9-1.12 is installed OR postgresql10-plperl-10.9-1.12 is installed OR postgresql10-plpython-10.9-1.12 is installed OR postgresql10-pltcl-10.9-1.12 is installed OR postgresql10-server-10.9-1.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_175-94_79-default-6-2 is installed OR kgraft-patch-SLE12-SP3_Update_23-6-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libcroco-0.6.11-12.3 is installed OR libcroco-0_6-3-0.6.11-12.3 is installed OR libcroco-0_6-3-32bit-0.6.11-12.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information gnutls-3.3.27-3.3 is installed OR libgnutls-openssl27-3.3.27-3.3 is installed OR libgnutls28-3.3.27-3.3 is installed OR libgnutls28-32bit-3.3.27-3.3 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information git-2.26.2-27.36 is installed OR git-core-2.26.2-27.36 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND Package Information xen-4.11.4_04-2.30 is installed OR xen-doc-html-4.11.4_04-2.30 is installed OR xen-libs-4.11.4_04-2.30 is installed OR xen-libs-32bit-4.11.4_04-2.30 is installed OR xen-tools-4.11.4_04-2.30 is installed OR xen-tools-domU-4.11.4_04-2.30 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information java-1_8_0-openjdk-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-demo-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-devel-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-headless-1.8.0.222-27.35 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND haproxy-1.6.11-11.3 is installed
BACK