SUSE-SU-2024:0004-1 -- SLES webkit2gtk3, WebKitGTK-4.0-lang, typelib-1_0-JavaScriptCore-4_0, typelib-1_0-WebKit2WebExtension-4_0, webkit2gtk-4_0-injected-bundles, typelib-1_0-WebKit2-4_0, libwebkit2gtk-4_0-37, libjavascriptcoregtk-4_0-18, WebKitGTK-4.1-lang, libjavascriptcoregtk-4_1-0, typelib-1_0-WebKit2WebExtension-4_1, typelib-1_0-WebKit2-4_1, libwebkit2gtk-4_1-0, typelib-1_0-JavaScriptCore-4_1, webkit2gtk-4_1-injected-bundles, WebKitGTK-6.0-lang, libjavascriptcoregtk-6_0-1, libwebkitgtk-6_0-4, webkitgtk-6_0-injected-bundles, webkit2gtk4-debugsourceID: oval:org.secpod.oval:def:89051323 | Date: (C)2024-01-23 (M)2024-02-26 |
Class: PATCH | Family: unix |
This update for webkit2gtk3 fixes the following issues: * CVE-2023-42890: Fixed processing malicious web content may lead to arbitrary code execution . * CVE-2023-42883: Fixed processing a malicious image may lead to a denial-of- service . * CVE-2023-41074: Fixed use-after-free in the MediaRecorder API of the WebKit GStreamer-based ports . * CVE-2023-40451, CVE-2023-41074: Update to version 2.42.4 .
Platform: |
SUSE Linux Enterprise Desktop 15 SP4 |
SUSE Linux Enterprise Desktop 15 SP5 |
SUSE Linux Enterprise Server 15 SP4 |
SUSE Linux Enterprise Server 15 SP5 |
Product: |
webkit2gtk3 |
WebKitGTK-4.0-lang |
typelib-1_0-JavaScriptCore-4_0 |
typelib-1_0-WebKit2WebExtension-4_0 |
webkit2gtk-4_0-injected-bundles |
typelib-1_0-WebKit2-4_0 |
libwebkit2gtk-4_0-37 |
libjavascriptcoregtk-4_0-18 |
WebKitGTK-4.1-lang |
libjavascriptcoregtk-4_1-0 |
typelib-1_0-WebKit2WebExtension-4_1 |
typelib-1_0-WebKit2-4_1 |
libwebkit2gtk-4_1-0 |
typelib-1_0-JavaScriptCore-4_1 |
webkit2gtk-4_1-injected-bundles |
WebKitGTK-6.0-lang |
libjavascriptcoregtk-6_0-1 |
libwebkitgtk-6_0-4 |
webkitgtk-6_0-injected-bundles |
webkit2gtk4-debugsource |