Oval Definition:oval:org.opensuse.security:def:65201
Revision Date:2020-12-17Version:1
Title:Security update for webkit2gtk3 (Important)
Description:

This update for webkit2gtk3 fixes the following issues:

-webkit2gtk3 was updated to version 2.30.3 (bsc#1179122 bsc#1179451): - CVE-2021-13543: Fixed a use after free which could have led to arbitrary code execution. - CVE-2021-13584: Fixed a use after free which could have led to arbitrary code execution. - CVE-2021-9948: Fixed a type confusion which could have led to arbitrary code execution. - CVE-2021-9951: Fixed a use after free which could have led to arbitrary code execution. - CVE-2021-9983: Fixed an out of bounds write which could have led to arbitrary code execution. - Have the libwebkit2gtk package require libjavascriptcoregtk of the same version (bsc#1171531). - Enable c_loop on aarch64: currently needed for compilation to succeed with JIT disabled. Also disable sampling profiler, since it conflicts with c_loop (bsc#1177087).
Family:unixClass:patch
Status:Reference(s):1092115
1168326
1168352
1171531
1177087
1179122
1179451
CVE-2018-9154
CVE-2020-13543
CVE-2020-13584
CVE-2020-7064
CVE-2020-7066
CVE-2020-9948
CVE-2020-9951
CVE-2020-9983
SUSE-SU-2020:1199-1
SUSE-SU-2020:1420-1
SUSE-SU-2020:3867-1
Platform(s):SUSE Linux Enterprise Desktop 15 SP2
SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise Module for Desktop Applications 15 SP1
SUSE Linux Enterprise Module for Desktop Applications 15 SP2
SUSE Linux Enterprise Module for Development Tools 15 SP1
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Storage 7
SUSE Manager Proxy 4.1
SUSE Manager Server 4.1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP2 is installed
  • AND Package Information
  • typelib-1_0-JavaScriptCore-4_0-2.30.3-3.9.3 is installed
  • OR typelib-1_0-WebKit2-4_0-2.30.3-3.9.3 is installed
  • OR typelib-1_0-WebKit2WebExtension-4_0-2.30.3-3.9.3 is installed
  • OR webkit2gtk3-devel-2.30.3-3.9.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed
  • AND Package Information
  • jasper-2.0.14-3.11 is installed
  • OR libjasper-devel-2.0.14-3.11 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Development Tools 15 SP1 is installed
  • AND Package Information
  • libtidy-devel-5.4.0-3.2 is installed
  • OR libtidy5-5.4.0-3.2 is installed
  • OR tidy-5.4.0-3.2 is installed
  • BACK