Oval Definition:oval:org.opensuse.security:def:66426
Revision Date:2020-12-17Version:1
Title:Security update for webkit2gtk3 (Important)
Description:

This update for webkit2gtk3 fixes the following issues:

-webkit2gtk3 was updated to version 2.30.3 (bsc#1179122 bsc#1179451): - CVE-2021-13543: Fixed a use after free which could have led to arbitrary code execution. - CVE-2021-13584: Fixed a use after free which could have led to arbitrary code execution. - CVE-2021-9948: Fixed a type confusion which could have led to arbitrary code execution. - CVE-2021-9951: Fixed a use after free which could have led to arbitrary code execution. - CVE-2021-9983: Fixed an out of bounds write which could have led to arbitrary code execution. - Have the libwebkit2gtk package require libjavascriptcoregtk of the same version (bsc#1171531). - Enable c_loop on aarch64: currently needed for compilation to succeed with JIT disabled. Also disable sampling profiler, since it conflicts with c_loop (bsc#1177087).
Family:unixClass:patch
Status:Reference(s):1171531
1177087
1179122
1179451
CVE-2013-1752
CVE-2013-1753
CVE-2016-0772
CVE-2016-1000110
CVE-2016-5636
CVE-2016-5699
CVE-2017-1000158
CVE-2017-1000231
CVE-2017-1000232
CVE-2017-18207
CVE-2018-1000030
CVE-2018-1000802
CVE-2018-1060
CVE-2018-1061
CVE-2018-14647
CVE-2018-20852
CVE-2019-10160
CVE-2019-16056
CVE-2019-16935
CVE-2019-18348
CVE-2019-5010
CVE-2019-9636
CVE-2019-9674
CVE-2019-9947
CVE-2019-9948
CVE-2020-13543
CVE-2020-13584
CVE-2020-8492
CVE-2020-9948
CVE-2020-9951
CVE-2020-9983
Platform(s):SUSE Linux Enterprise Module for Basesystem 15 SP2
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed
  • AND Package Information
  • ldns-devel-1.7.0-4.3 is installed
  • OR libldns2-1.7.0-4.3 is installed
    • BACK