Oval Definition:oval:org.opensuse.security:def:64739
Revision Date:2021-08-03Version:1
Title:Security update for webkit2gtk3 (Important)
Description:

This update for webkit2gtk3 fixes the following issues:

- Update to version 2.32.3: - CVE-2021-21775: Fixed a use-after-free vulnerability in the way certain events are processed for ImageLoader objects. A specially crafted web page can lead to a potential information leak and further memory corruption. A victim must be tricked into visiting a malicious web page to trigger this vulnerability. (bsc#1188697) - CVE-2021-21779: Fixed a use-after-free vulnerability in the way that WebKit GraphicsContext handles certain events. A specially crafted web page can lead to a potential information leak and further memory corruption. A victim must be tricked into visiting a malicious web page to trigger this vulnerability. (bsc#1188697) - CVE-2021-30663: An integer overflow was addressed with improved input validation. (bsc#1188697) - CVE-2021-30665: A memory corruption issue was addressed with improved state management. (bsc#1188697) - CVE-2021-30689: A logic issue was addressed with improved state management. (bsc#1188697) - CVE-2021-30720: A logic issue was addressed with improved restrictions. (bsc#1188697) - CVE-2021-30734: Multiple memory corruption issues were addressed with improved memory handling. (bsc#1188697) - CVE-2021-30744: A cross-origin issue with iframe elements was addressed with improved tracking of security origins. (bsc#1188697) - CVE-2021-30749: Multiple memory corruption issues were addressed with improved memory handling. (bsc#1188697) - CVE-2021-30758: A type confusion issue was addressed with improved state handling. (bsc#1188697) - CVE-2021-30795: A use after free issue was addressed with improved memory management. (bsc#1188697) - CVE-2021-30797: This issue was addressed with improved checks. (bsc#1188697) - CVE-2021-30799: Multiple memory corruption issues were addressed with improved memory handling. (bsc#1188697)
Family:unixClass:patch
Status:Reference(s):1084631
1086186
1086227
1086228
1090519
1090840
1106878
1107592
1107594
1108404
1111331
1115758
1115774
1115795
1133229
1134348
1135273
1136109
1166238
1168630
1168874
1171974
1172175
1172176
1173251
1173538
1173576
1173613
1175568
1188697
CVE-2013-6418
CVE-2018-1000667
CVE-2018-10016
CVE-2018-10254
CVE-2018-10316
CVE-2018-12126
CVE-2018-12127
CVE-2018-12130
CVE-2018-16382
CVE-2018-16517
CVE-2018-16999
CVE-2018-19214
CVE-2018-19215
CVE-2018-19216
CVE-2018-8881
CVE-2018-8882
CVE-2018-8883
CVE-2019-10132
CVE-2019-11091
CVE-2019-20797
CVE-2020-11076
CVE-2020-11077
CVE-2020-12402
CVE-2020-12415
CVE-2020-12416
CVE-2020-12417
CVE-2020-12418
CVE-2020-12419
CVE-2020-12420
CVE-2020-12421
CVE-2020-12422
CVE-2020-12423
CVE-2020-12424
CVE-2020-12425
CVE-2020-12426
CVE-2020-6509
CVE-2020-6819
CVE-2020-6820
CVE-2020-6821
CVE-2020-6822
CVE-2020-6825
CVE-2020-8027
CVE-2021-21775
CVE-2021-21779
CVE-2021-30663
CVE-2021-30665
CVE-2021-30689
CVE-2021-30720
CVE-2021-30734
CVE-2021-30744
CVE-2021-30749
CVE-2021-30758
CVE-2021-30795
CVE-2021-30797
CVE-2021-30799
openSUSE-SU-2020:0520-1
openSUSE-SU-2020:0807-1
openSUSE-SU-2020:0950-1
openSUSE-SU-2020:0954-1
openSUSE-SU-2020:0983-1
openSUSE-SU-2020:1001-1
openSUSE-SU-2020:1539-1
SUSE-SU-2019:1490-1
SUSE-SU-2021:2598-1
Platform(s):openSUSE Leap 15.1
openSUSE Leap 15.2
openSUSE Leap 15.2 NonFree
SUSE Linux Enterprise Desktop 15 SP3
SUSE Linux Enterprise High Performance Computing 15 SP3
SUSE Linux Enterprise Module for Basesystem 15 SP1
SUSE Linux Enterprise Module for Basesystem 15 SP3
SUSE Linux Enterprise Module for Server Applications 15 SP1
SUSE Linux Enterprise Server 15 SP3
SUSE Linux Enterprise Server for SAP Applications 15 SP3
SUSE Manager Proxy 4.2
SUSE Manager Server 4.2
Product(s):
Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • MozillaThunderbird-68.7.0-lp151.2.31 is installed
  • OR MozillaThunderbird-translations-common-68.7.0-lp151.2.31 is installed
  • OR MozillaThunderbird-translations-other-68.7.0-lp151.2.31 is installed
    • Definition Synopsis
  • openSUSE Leap 15.2 is installed
  • AND Package Information
  • ruby2.5-rubygem-puma-4.3.5-lp152.4.3 is installed
  • OR ruby2.5-rubygem-puma-doc-4.3.5-lp152.4.3 is installed
  • OR rubygem-puma-4.3.5-lp152.4.3 is installed
    • Definition Synopsis
  • openSUSE Leap 15.2 NonFree is installed
  • AND opera-69.0.3686.49-lp152.2.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP3 is installed
  • AND Package Information
  • libjavascriptcoregtk-4_0-18-2.32.3-9.1 is installed
  • OR libwebkit2gtk-4_0-37-2.32.3-9.1 is installed
  • OR libwebkit2gtk3-lang-2.32.3-9.1 is installed
  • OR webkit2gtk-4_0-injected-bundles-2.32.3-9.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed
  • AND Package Information
  • libvirt-5.1.0-8.3 is installed
  • OR libvirt-libs-5.1.0-8.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
  • AND python3-pywbem-0.11.0-2 is installed
    • BACK