Oval Definition:oval:org.opensuse.security:def:65233
Revision Date:2021-08-03Version:1
Title:Security update for webkit2gtk3 (Important)
Description:

This update for webkit2gtk3 fixes the following issues:

- Update to version 2.32.3: - CVE-2021-21775: Fixed a use-after-free vulnerability in the way certain events are processed for ImageLoader objects. A specially crafted web page can lead to a potential information leak and further memory corruption. A victim must be tricked into visiting a malicious web page to trigger this vulnerability. (bsc#1188697) - CVE-2021-21779: Fixed a use-after-free vulnerability in the way that WebKit GraphicsContext handles certain events. A specially crafted web page can lead to a potential information leak and further memory corruption. A victim must be tricked into visiting a malicious web page to trigger this vulnerability. (bsc#1188697) - CVE-2021-30663: An integer overflow was addressed with improved input validation. (bsc#1188697) - CVE-2021-30665: A memory corruption issue was addressed with improved state management. (bsc#1188697) - CVE-2021-30689: A logic issue was addressed with improved state management. (bsc#1188697) - CVE-2021-30720: A logic issue was addressed with improved restrictions. (bsc#1188697) - CVE-2021-30734: Multiple memory corruption issues were addressed with improved memory handling. (bsc#1188697) - CVE-2021-30744: A cross-origin issue with iframe elements was addressed with improved tracking of security origins. (bsc#1188697) - CVE-2021-30749: Multiple memory corruption issues were addressed with improved memory handling. (bsc#1188697) - CVE-2021-30758: A type confusion issue was addressed with improved state handling. (bsc#1188697) - CVE-2021-30795: A use after free issue was addressed with improved memory management. (bsc#1188697) - CVE-2021-30797: This issue was addressed with improved checks. (bsc#1188697) - CVE-2021-30799: Multiple memory corruption issues were addressed with improved memory handling. (bsc#1188697)
Family:unixClass:patch
Status:Reference(s):1055014
1061843
1065600
1065729
1066382
1077428
1112178
1131277
1134760
1170415
1171558
1173432
1174748
1176354
1176485
1176560
1176713
1176723
1177086
1177101
1177271
1177281
1177410
1177411
1177470
1177687
1177719
1177740
1177749
1177750
1177753
1177754
1177755
1177766
1177855
1177856
1177861
1178003
1178027
1178067
1178166
1178185
1178187
1178188
1178202
1178234
1178330
1188697
CVE-2020-0430
CVE-2020-14351
CVE-2020-16120
CVE-2020-25285
CVE-2020-25656
CVE-2020-27560
CVE-2020-27673
CVE-2020-27675
CVE-2020-8694
CVE-2021-21775
CVE-2021-21779
CVE-2021-30663
CVE-2021-30665
CVE-2021-30689
CVE-2021-30720
CVE-2021-30734
CVE-2021-30744
CVE-2021-30749
CVE-2021-30758
CVE-2021-30795
CVE-2021-30797
CVE-2021-30799
SUSE-SU-2020:3162-1
SUSE-SU-2020:3272-1
SUSE-SU-2021:2598-1
Platform(s):SUSE Linux Enterprise Desktop 15 SP2
SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise Module for Desktop Applications 15 SP1
SUSE Linux Enterprise Module for Desktop Applications 15 SP2
SUSE Linux Enterprise Module for Development Tools 15 SP1
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Storage 7
SUSE Manager Proxy 4.1
SUSE Manager Server 4.1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed
  • AND Package Information
  • ImageMagick-7.0.7.34-3.85 is installed
  • OR ImageMagick-config-7-SUSE-7.0.7.34-3.85 is installed
  • OR ImageMagick-devel-7.0.7.34-3.85 is installed
  • OR libMagick++-7_Q16HDRI4-7.0.7.34-3.85 is installed
  • OR libMagick++-devel-7.0.7.34-3.85 is installed
  • OR libMagickCore-7_Q16HDRI6-7.0.7.34-3.85 is installed
  • OR libMagickWand-7_Q16HDRI6-7.0.7.34-3.85 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Development Tools 15 SP1 is installed
  • AND Package Information
  • kernel-docs-4.12.14-197.67 is installed
  • OR kernel-obs-build-4.12.14-197.67 is installed
  • OR kernel-source-4.12.14-197.67 is installed
  • OR kernel-syms-4.12.14-197.67 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP2 is installed
  • AND Package Information
  • typelib-1_0-JavaScriptCore-4_0-2.32.3-9.1 is installed
  • OR typelib-1_0-WebKit2-4_0-2.32.3-9.1 is installed
  • OR typelib-1_0-WebKit2WebExtension-4_0-2.32.3-9.1 is installed
  • OR webkit2gtk3-devel-2.32.3-9.1 is installed
    • BACK