Oval Definition:oval:org.opensuse.security:def:59774
Revision Date:2021-08-03Version:1
Title:Security update for webkit2gtk3 (Important)
Description:

This update for webkit2gtk3 fixes the following issues:

Update to version 2.32.3:

- CVE-2021-21775: Fixed a use-after-free vulnerability in the way certain events are processed for ImageLoader objects. A specially crafted web page can lead to a potential information leak and further memory corruption. A victim must be tricked into visiting a malicious web page to trigger this vulnerability. (bsc#1188697) - CVE-2021-21779: Fixed a use-after-free vulnerability in the way that WebKit GraphicsContext handles certain events. A specially crafted web page can lead to a potential information leak and further memory corruption. A victim must be tricked into visiting a malicious web page to trigger this vulnerability. (bsc#1188697) - CVE-2021-30663: An integer overflow was addressed with improved input validation. (bsc#1188697) - CVE-2021-30665: A memory corruption issue was addressed with improved state management. (bsc#1188697) - CVE-2021-30689: A logic issue was addressed with improved state management. (bsc#1188697) - CVE-2021-30720: A logic issue was addressed with improved restrictions. (bsc#1188697) - CVE-2021-30734: Multiple memory corruption issues were addressed with improved memory handling. (bsc#1188697) - CVE-2021-30744: A cross-origin issue with iframe elements was addressed with improved tracking of security origins. (bsc#1188697) - CVE-2021-30749: Multiple memory corruption issues were addressed with improved memory handling. (bsc#1188697) - CVE-2021-30758: A type confusion issue was addressed with improved state handling. (bsc#1188697) - CVE-2021-30795: A use after free issue was addressed with improved memory management. (bsc#1188697) - CVE-2021-30797: This issue was addressed with improved checks. (bsc#1188697) - CVE-2021-30799: Multiple memory corruption issues were addressed with improved memory handling. (bsc#1188697)
Family:unixClass:patch
Status:Reference(s):1012382
1031717
1042829
1046610
1056865
1057734
1070536
1075428
1076847
1077375
1077560
1080249
1082153
1082299
1082858
1082885
1082975
1082977
1082991
1082998
1083002
1083125
1083213
1083250
1083745
1083836
1083993
1084353
1084610
1084656
1084721
1084829
1085042
1085185
1085224
1085402
1085404
1086162
1086194
1087026
1087088
1087260
1087845
1088241
1088242
1088600
1088662
1088684
1089124
1089198
1089608
1089644
1089752
1090643
1101295
1101410
1101412
1101654
1103040
1104448
1107832
1110233
1119947
1121826
1129346
1130847
1141322
1158527
1159352
1159819
1159913
1165631
1169740
1171355
1172265
1172651
1173334
1188697
896914
CVE-2008-4225
CVE-2008-4226
CVE-2008-4409
CVE-2012-5134
CVE-2014-10070
CVE-2014-10071
CVE-2014-10072
CVE-2016-10714
CVE-2016-1762
CVE-2016-1833
CVE-2016-1834
CVE-2016-1835
CVE-2016-1836
CVE-2016-1837
CVE-2016-1838
CVE-2016-1839
CVE-2016-1840
CVE-2016-3627
CVE-2016-3705
CVE-2016-4483
CVE-2017-18205
CVE-2017-18206
CVE-2017-18257
CVE-2017-9103
CVE-2017-9104
CVE-2017-9105
CVE-2017-9106
CVE-2017-9107
CVE-2017-9108
CVE-2017-9109
CVE-2017-9432
CVE-2017-9433
CVE-2017-9951
CVE-2018-0360
CVE-2018-0361
CVE-2018-1000085
CVE-2018-10087
CVE-2018-10124
CVE-2018-1055
CVE-2018-1071
CVE-2018-1083
CVE-2018-1087
CVE-2018-10873
CVE-2018-10893
CVE-2018-14633
CVE-2018-14679
CVE-2018-16884
CVE-2018-17182
CVE-2018-6871
CVE-2018-7549
CVE-2018-7740
CVE-2018-8043
CVE-2018-8781
CVE-2018-8822
CVE-2018-8897
CVE-2018-8956
CVE-2019-11745
CVE-2019-16775
CVE-2019-16776
CVE-2019-16777
CVE-2019-17006
CVE-2019-5108
CVE-2019-6133
CVE-2019-9636
CVE-2019-9948
CVE-2020-11868
CVE-2020-13817
CVE-2020-15025
CVE-2020-1749
CVE-2021-21775
CVE-2021-21779
CVE-2021-30663
CVE-2021-30665
CVE-2021-30689
CVE-2021-30720
CVE-2021-30734
CVE-2021-30744
CVE-2021-30749
CVE-2021-30758
CVE-2021-30795
CVE-2021-30797
CVE-2021-30799
SUSE-SU-2018:0839-1
SUSE-SU-2018:1072-1
SUSE-SU-2018:1076-1
SUSE-SU-2018:2594-1
SUSE-SU-2020:0088-1
SUSE-SU-2020:0247-1
SUSE-SU-2020:1612-1
SUSE-SU-2021:2600-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP4-LTSS
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND bubblewrap-0.2.0-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND transfig-3.2.6a-lp151.4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND clamav-0.100.1-33.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND python-libxml2-2.9.4-45 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • kernel-default-4.4.180-94.113 is installed
  • OR kernel-default-base-4.4.180-94.113 is installed
  • OR kernel-default-devel-4.4.180-94.113 is installed
  • OR kernel-devel-4.4.180-94.113 is installed
  • OR kernel-macros-4.4.180-94.113 is installed
  • OR kernel-source-4.4.180-94.113 is installed
  • OR kernel-syms-4.4.180-94.113 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND mutt-1.10.1-55.11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND binutils-2.32-9.33 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND unzip-6.00-33.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • audiofile-0.3.6-10 is installed
  • OR libaudiofile1-0.3.6-10 is installed
  • OR libaudiofile1-32bit-0.3.6-10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4-LTSS is installed
  • AND Package Information
  • libjavascriptcoregtk-4_0-18-2.32.3-2.66.1 is installed
  • OR libwebkit2gtk-4_0-37-2.32.3-2.66.1 is installed
  • OR libwebkit2gtk3-lang-2.32.3-2.66.1 is installed
  • OR typelib-1_0-JavaScriptCore-4_0-2.32.3-2.66.1 is installed
  • OR typelib-1_0-WebKit2-4_0-2.32.3-2.66.1 is installed
  • OR typelib-1_0-WebKit2WebExtension-4_0-2.32.3-2.66.1 is installed
  • OR webkit2gtk-4_0-injected-bundles-2.32.3-2.66.1 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • adns-1.4-103.3 is installed
  • OR libadns1-1.4-103.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 9 is installed
  • AND python-requests-2.20.1-4.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND nodejs6-6.17.1-11.30 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND Package Information
  • caasp-openstack-heat-templates-1.0+git.1560518045.ad7dc6d-3.3 is installed
  • OR crowbar-6.0+git.1561125496.b7508480-3.6 is installed
  • OR crowbar-core-6.0+git.1562154525.5e2983308-3.3 is installed
  • OR crowbar-core-branding-upstream-6.0+git.1562154525.5e2983308-3.3 is installed
  • OR crowbar-devel-6.0+git.1561125496.b7508480-3.6 is installed
  • OR crowbar-ha-6.0+git.1560951093.4af1ee5-3.3 is installed
  • OR crowbar-openstack-6.0+git.1562153583.4735fcf34-3.3 is installed
  • OR documentation-suse-openstack-cloud-crowbar-deployment-9.20190621-3.3 is installed
  • OR documentation-suse-openstack-cloud-crowbar-operations-9.20190621-3.3 is installed
  • OR documentation-suse-openstack-cloud-supplement-9.20190621-3.3 is installed
  • OR galera-python-clustercheck-0.0+git.1562242499.36b8b64-6.3 is installed
  • OR grafana-5.3.3-3.3 is installed
  • OR grafana-monasca-ui-drilldown-1.14.1~dev7-3.3 is installed
  • OR openstack-ceilometer-11.0.2~dev13-3.3 is installed
  • OR openstack-ceilometer-agent-central-11.0.2~dev13-3.3 is installed
  • OR openstack-ceilometer-agent-compute-11.0.2~dev13-3.3 is installed
  • OR openstack-ceilometer-agent-ipmi-11.0.2~dev13-3.3 is installed
  • OR openstack-ceilometer-agent-notification-11.0.2~dev13-3.3 is installed
  • OR openstack-ceilometer-polling-11.0.2~dev13-3.3 is installed
  • OR openstack-cinder-13.0.6~dev12-3.3 is installed
  • OR openstack-cinder-api-13.0.6~dev12-3.3 is installed
  • OR openstack-cinder-backup-13.0.6~dev12-3.3 is installed
  • OR openstack-cinder-scheduler-13.0.6~dev12-3.3 is installed
  • OR openstack-cinder-volume-13.0.6~dev12-3.3 is installed
  • OR openstack-dashboard-14.0.4~dev4-3.3 is installed
  • OR openstack-designate-7.0.1~dev20-3.3 is installed
  • OR openstack-designate-agent-7.0.1~dev20-3.3 is installed
  • OR openstack-designate-api-7.0.1~dev20-3.3 is installed
  • OR openstack-designate-central-7.0.1~dev20-3.3 is installed
  • OR openstack-designate-producer-7.0.1~dev20-3.3 is installed
  • OR openstack-designate-sink-7.0.1~dev20-3.3 is installed
  • OR openstack-designate-worker-7.0.1~dev20-3.3 is installed
  • OR openstack-heat-11.0.3~dev5-3.3 is installed
  • OR openstack-heat-api-11.0.3~dev5-3.3 is installed
  • OR openstack-heat-api-cfn-11.0.3~dev5-3.3 is installed
  • OR openstack-heat-engine-11.0.3~dev5-3.3 is installed
  • OR openstack-heat-plugin-heat_docker-11.0.3~dev5-3.3 is installed
  • OR openstack-horizon-plugin-designate-ui-7.0.1~dev7-3.3 is installed
  • OR openstack-horizon-plugin-heat-ui-1.4.1~dev4-4.3 is installed
  • OR openstack-horizon-plugin-magnum-ui-5.0.2~dev9-3.3 is installed
  • OR openstack-horizon-plugin-monasca-ui-1.14.1~dev7-3.3 is installed
  • OR openstack-ironic-11.1.4~dev2-3.3 is installed
  • OR openstack-ironic-api-11.1.4~dev2-3.3 is installed
  • OR openstack-ironic-conductor-11.1.4~dev2-3.3 is installed
  • OR openstack-ironic-python-agent-3.3.2~dev13-3.3 is installed
  • OR openstack-keystone-14.1.1~dev7-3.3 is installed
  • OR openstack-magnum-7.1.1~dev24-3.3 is installed
  • OR openstack-magnum-api-7.1.1~dev24-3.3 is installed
  • OR openstack-magnum-conductor-7.1.1~dev24-3.3 is installed
  • OR openstack-manila-7.3.1~dev2-4.3 is installed
  • OR openstack-manila-api-7.3.1~dev2-4.3 is installed
  • OR openstack-manila-data-7.3.1~dev2-4.3 is installed
  • OR openstack-manila-scheduler-7.3.1~dev2-4.3 is installed
  • OR openstack-manila-share-7.3.1~dev2-4.3 is installed
  • OR openstack-monasca-agent-2.8.1~dev10-3.3 is installed
  • OR openstack-monasca-notification-1.14.1~dev8-6.3 is installed
  • OR openstack-neutron-13.0.4~dev89-3.3 is installed
  • OR openstack-neutron-dhcp-agent-13.0.4~dev89-3.3 is installed
  • OR openstack-neutron-fwaas-13.0.2~dev14-3.3 is installed
  • OR openstack-neutron-gbp-5.0.1~dev443-3.3 is installed
  • OR openstack-neutron-ha-tool-13.0.4~dev89-3.3 is installed
  • OR openstack-neutron-l3-agent-13.0.4~dev89-3.3 is installed
  • OR openstack-neutron-lbaas-13.0.1~dev12-3.3 is installed
  • OR openstack-neutron-lbaas-agent-13.0.1~dev12-3.3 is installed
  • OR openstack-neutron-linuxbridge-agent-13.0.4~dev89-3.3 is installed
  • OR openstack-neutron-macvtap-agent-13.0.4~dev89-3.3 is installed
  • OR openstack-neutron-metadata-agent-13.0.4~dev89-3.3 is installed
  • OR openstack-neutron-metering-agent-13.0.4~dev89-3.3 is installed
  • OR openstack-neutron-openvswitch-agent-13.0.4~dev89-3.3 is installed
  • OR openstack-neutron-server-13.0.4~dev89-3.3 is installed
  • OR openstack-neutron-vpnaas-13.0.2~dev4-3.3 is installed
  • OR openstack-neutron-vyatta-agent-13.0.2~dev4-3.3 is installed
  • OR openstack-nova-18.2.2~dev9-3.3 is installed
  • OR openstack-nova-api-18.2.2~dev9-3.3 is installed
  • OR openstack-nova-cells-18.2.2~dev9-3.3 is installed
  • OR openstack-nova-compute-18.2.2~dev9-3.3 is installed
  • OR openstack-nova-conductor-18.2.2~dev9-3.3 is installed
  • OR openstack-nova-console-18.2.2~dev9-3.3 is installed
  • OR openstack-nova-novncproxy-18.2.2~dev9-3.3 is installed
  • OR openstack-nova-placement-api-18.2.2~dev9-3.3 is installed
  • OR openstack-nova-scheduler-18.2.2~dev9-3.3 is installed
  • OR openstack-nova-serialproxy-18.2.2~dev9-3.3 is installed
  • OR openstack-nova-vncproxy-18.2.2~dev9-3.3 is installed
  • OR openstack-octavia-3.1.2~dev2-3.3 is installed
  • OR openstack-octavia-amphora-agent-3.1.2~dev2-3.3 is installed
  • OR openstack-octavia-api-3.1.2~dev2-3.3 is installed
  • OR openstack-octavia-health-manager-3.1.2~dev2-3.3 is installed
  • OR openstack-octavia-housekeeping-3.1.2~dev2-3.3 is installed
  • OR openstack-octavia-worker-3.1.2~dev2-3.3 is installed
  • OR python-barbican-tempest-plugin-0.1.0-4.3 is installed
  • OR python-ceilometer-11.0.2~dev13-3.3 is installed
  • OR python-cinder-13.0.6~dev12-3.3 is installed
  • OR python-cinderclient-4.0.2-3.3 is installed
  • OR python-cinderclient-doc-4.0.2-3.3 is installed
  • OR python-designate-7.0.1~dev20-3.3 is installed
  • OR python-heat-11.0.3~dev5-3.3 is installed
  • OR python-horizon-14.0.4~dev4-3.3 is installed
  • OR python-horizon-plugin-designate-ui-7.0.1~dev7-3.3 is installed
  • OR python-horizon-plugin-heat-ui-1.4.1~dev4-4.3 is installed
  • OR python-horizon-plugin-magnum-ui-5.0.2~dev9-3.3 is installed
  • OR python-horizon-plugin-monasca-ui-1.14.1~dev7-3.3 is installed
  • OR python-ironic-11.1.4~dev2-3.3 is installed
  • OR python-ironicclient-2.5.2-4.3 is installed
  • OR python-ironicclient-doc-2.5.2-4.3 is installed
  • OR python-keystone-14.1.1~dev7-3.3 is installed
  • OR python-magnum-7.1.1~dev24-3.3 is installed
  • OR python-manila-7.3.1~dev2-4.3 is installed
  • OR python-manila-tempest-plugin-0.1.0-3.3 is installed
  • OR python-manilaclient-1.24.2-3.3 is installed
  • OR python-manilaclient-doc-1.24.2-3.3 is installed
  • OR python-monasca-agent-2.8.1~dev10-3.3 is installed
  • OR python-monasca-notification-1.14.1~dev8-6.3 is installed
  • OR python-neutron-13.0.4~dev89-3.3 is installed
  • OR python-neutron-fwaas-13.0.2~dev14-3.3 is installed
  • OR python-neutron-gbp-5.0.1~dev443-3.3 is installed
  • OR python-neutron-lbaas-13.0.1~dev12-3.3 is installed
  • OR python-neutron-vpnaas-13.0.2~dev4-3.3 is installed
  • OR python-nova-18.2.2~dev9-3.3 is installed
  • OR python-octavia-3.1.2~dev2-3.3 is installed
  • OR python-openstack_auth-14.0.4~dev4-3.3 is installed
  • OR python-os-brick-2.5.7-3.3 is installed
  • OR python-os-brick-common-2.5.7-3.3 is installed
  • OR python-oslo.db-4.40.2-3.3 is installed
  • OR python-proliantutils-2.8.4-1 is installed
  • OR supportutils-plugin-suse-openstack-cloud-9.0.1562324636.e7046a3-1 is installed
    • BACK