Oval Definition:oval:org.opensuse.security:def:64279
Revision Date:2020-12-17Version:1
Title:Security update for webkit2gtk3 (Important)
Description:

This update for webkit2gtk3 fixes the following issues:

-webkit2gtk3 was updated to version 2.30.3 (bsc#1179122 bsc#1179451): - CVE-2021-13543: Fixed a use after free which could have led to arbitrary code execution. - CVE-2021-13584: Fixed a use after free which could have led to arbitrary code execution. - CVE-2021-9948: Fixed a type confusion which could have led to arbitrary code execution. - CVE-2021-9951: Fixed a use after free which could have led to arbitrary code execution. - CVE-2021-9983: Fixed an out of bounds write which could have led to arbitrary code execution. - Have the libwebkit2gtk package require libjavascriptcoregtk of the same version (bsc#1171531). - Enable c_loop on aarch64: currently needed for compilation to succeed with JIT disabled. Also disable sampling profiler, since it conflicts with c_loop (bsc#1177087).
Family:unixClass:patch
Status:Reference(s):1096726
1101357
1119784
1119785
1119799
1119800
1119801
1123156
1123387
1135460
1136974
1137860
1139073
1141035
1141122
1143386
1154302
1155988
1157119
1159498
1160673
1160922
1171531
1176791
1177087
1179122
1179451
CVE-2012-2669
CVE-2012-5532
CVE-2014-8964
CVE-2015-2325
CVE-2015-2326
CVE-2016-3191
CVE-2017-7186
CVE-2017-8786
CVE-2018-15664
CVE-2018-18246
CVE-2018-18247
CVE-2018-18248
CVE-2018-18249
CVE-2018-18250
CVE-2019-10152
CVE-2019-11135
CVE-2019-11139
CVE-2019-13767
CVE-2019-18904
CVE-2019-3692
CVE-2019-6778
CVE-2020-13543
CVE-2020-13584
CVE-2020-15960
CVE-2020-15961
CVE-2020-15962
CVE-2020-15963
CVE-2020-15964
CVE-2020-15965
CVE-2020-15966
CVE-2020-9948
CVE-2020-9951
CVE-2020-9983
openSUSE-SU-2019:2044-1
openSUSE-SU-2019:2528-1
openSUSE-SU-2019:2712-1
openSUSE-SU-2020:0067-1
openSUSE-SU-2020:0234-1
openSUSE-SU-2020:0235-1
openSUSE-SU-2020:1527-1
SUSE-SU-2020:3864-1
Platform(s):openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 15 SP1
SUSE Linux Enterprise High Performance Computing 15 SP1
SUSE Linux Enterprise Module for Basesystem 15 SP1
SUSE Linux Enterprise Server 15 SP1
SUSE Linux Enterprise Server for SAP Applications 15 SP1
SUSE Linux Enterprise Storage 6
SUSE Manager Proxy 4.0
SUSE Manager Server 4.0
Product(s):
Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • fuse-overlayfs-0.4.1-lp151.2 is installed
  • OR fuse3-3.6.1-lp151.2 is installed
  • OR fuse3-devel-3.6.1-lp151.2 is installed
  • OR fuse3-doc-3.6.1-lp151.2 is installed
  • OR libcontainers-common-20190401-lp151.2.3 is installed
  • OR libfuse3-3-3.6.1-lp151.2 is installed
  • OR podman-1.4.4-lp151.3.3 is installed
  • OR podman-cni-config-1.4.4-lp151.3.3 is installed
  • OR slirp4netns-0.3.0-lp151.2.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed
  • AND Package Information
  • libjavascriptcoregtk-4_0-18-2.30.3-3.63.2 is installed
  • OR libwebkit2gtk-4_0-37-2.30.3-3.63.2 is installed
  • OR libwebkit2gtk3-lang-2.30.3-3.63.2 is installed
  • OR webkit2gtk-4_0-injected-bundles-2.30.3-3.63.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed
  • AND hyper-v-7-4 is installed
    • BACK