Oval Definition:oval:org.opensuse.security:def:73572
Revision Date:2020-12-17Version:1
Title:Security update for webkit2gtk3 (Important)
Description:

This update for webkit2gtk3 fixes the following issues:

-webkit2gtk3 was updated to version 2.30.3 (bsc#1179122 bsc#1179451): - CVE-2021-13543: Fixed a use after free which could have led to arbitrary code execution. - CVE-2021-13584: Fixed a use after free which could have led to arbitrary code execution. - CVE-2021-9948: Fixed a type confusion which could have led to arbitrary code execution. - CVE-2021-9951: Fixed a use after free which could have led to arbitrary code execution. - CVE-2021-9983: Fixed an out of bounds write which could have led to arbitrary code execution. - Have the libwebkit2gtk package require libjavascriptcoregtk of the same version (bsc#1171531). - Enable c_loop on aarch64: currently needed for compilation to succeed with JIT disabled. Also disable sampling profiler, since it conflicts with c_loop (bsc#1177087).
Family:unixClass:patch
Status:Reference(s):1171531
1172743
1177087
1179122
1179451
CVE-2017-6414
CVE-2020-13543
CVE-2020-13584
CVE-2020-13867
CVE-2020-9948
CVE-2020-9951
CVE-2020-9983
SUSE-SU-2020:2101-1
SUSE-SU-2020:3867-1
Platform(s):SUSE Linux Enterprise Desktop 15 SP2
SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise Module for Basesystem 15 SP2
SUSE Linux Enterprise Module for Server Applications 15 SP2
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Storage 7
SUSE Manager Proxy 4.1
SUSE Manager Server 4.1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed
  • AND Package Information
  • python3-targetcli-fb-2.1.52-3.3 is installed
  • OR targetcli-fb-2.1.52-3.3 is installed
  • OR targetcli-fb-common-2.1.52-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed
  • AND Package Information
  • libcacard-devel-2.5.3-1 is installed
  • OR libcacard0-2.5.3-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed
  • AND Package Information
  • libjavascriptcoregtk-4_0-18-2.30.3-3.9.3 is installed
  • OR libwebkit2gtk-4_0-37-2.30.3-3.9.3 is installed
  • OR libwebkit2gtk3-lang-2.30.3-3.9.3 is installed
  • OR webkit2gtk-4_0-injected-bundles-2.30.3-3.9.3 is installed
    • BACK