Описание
Security update for webkit2gtk3
This update for webkit2gtk3 fixes the following issues:
Update to version 2.30.5 (bsc#1182286):
- Bring back the WebKitPluginProcess installation that was removed by mistake.
- Fix RunLoop objects leaked in worker threads.
- Fix aarch64 llint build with JIT disabled.
- Use Internet Explorer quirk for Google Docs.
- Security fixes: CVE-2020-13558.
Список пакетов
SUSE Enterprise Storage 6
libjavascriptcoregtk-4_0-18-2.30.5-3.66.1
libwebkit2gtk-4_0-37-2.30.5-3.66.1
libwebkit2gtk3-lang-2.30.5-3.66.1
typelib-1_0-JavaScriptCore-4_0-2.30.5-3.66.1
typelib-1_0-WebKit2-4_0-2.30.5-3.66.1
typelib-1_0-WebKit2WebExtension-4_0-2.30.5-3.66.1
webkit2gtk-4_0-injected-bundles-2.30.5-3.66.1
webkit2gtk3-devel-2.30.5-3.66.1
SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS
libjavascriptcoregtk-4_0-18-2.30.5-3.66.1
libwebkit2gtk-4_0-37-2.30.5-3.66.1
libwebkit2gtk3-lang-2.30.5-3.66.1
typelib-1_0-JavaScriptCore-4_0-2.30.5-3.66.1
typelib-1_0-WebKit2-4_0-2.30.5-3.66.1
typelib-1_0-WebKit2WebExtension-4_0-2.30.5-3.66.1
webkit2gtk-4_0-injected-bundles-2.30.5-3.66.1
webkit2gtk3-devel-2.30.5-3.66.1
SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS
libjavascriptcoregtk-4_0-18-2.30.5-3.66.1
libwebkit2gtk-4_0-37-2.30.5-3.66.1
libwebkit2gtk3-lang-2.30.5-3.66.1
typelib-1_0-JavaScriptCore-4_0-2.30.5-3.66.1
typelib-1_0-WebKit2-4_0-2.30.5-3.66.1
typelib-1_0-WebKit2WebExtension-4_0-2.30.5-3.66.1
webkit2gtk-4_0-injected-bundles-2.30.5-3.66.1
webkit2gtk3-devel-2.30.5-3.66.1
SUSE Linux Enterprise High Performance Computing 15-ESPOS
libjavascriptcoregtk-4_0-18-2.30.5-3.66.1
libwebkit2gtk-4_0-37-2.30.5-3.66.1
libwebkit2gtk3-lang-2.30.5-3.66.1
typelib-1_0-JavaScriptCore-4_0-2.30.5-3.66.1
typelib-1_0-WebKit2-4_0-2.30.5-3.66.1
typelib-1_0-WebKit2WebExtension-4_0-2.30.5-3.66.1
webkit2gtk-4_0-injected-bundles-2.30.5-3.66.1
webkit2gtk3-devel-2.30.5-3.66.1
SUSE Linux Enterprise High Performance Computing 15-LTSS
libjavascriptcoregtk-4_0-18-2.30.5-3.66.1
libwebkit2gtk-4_0-37-2.30.5-3.66.1
libwebkit2gtk3-lang-2.30.5-3.66.1
typelib-1_0-JavaScriptCore-4_0-2.30.5-3.66.1
typelib-1_0-WebKit2-4_0-2.30.5-3.66.1
typelib-1_0-WebKit2WebExtension-4_0-2.30.5-3.66.1
webkit2gtk-4_0-injected-bundles-2.30.5-3.66.1
webkit2gtk3-devel-2.30.5-3.66.1
SUSE Linux Enterprise Server 15 SP1-BCL
libjavascriptcoregtk-4_0-18-2.30.5-3.66.1
libwebkit2gtk-4_0-37-2.30.5-3.66.1
libwebkit2gtk3-lang-2.30.5-3.66.1
typelib-1_0-JavaScriptCore-4_0-2.30.5-3.66.1
typelib-1_0-WebKit2-4_0-2.30.5-3.66.1
typelib-1_0-WebKit2WebExtension-4_0-2.30.5-3.66.1
webkit2gtk-4_0-injected-bundles-2.30.5-3.66.1
webkit2gtk3-devel-2.30.5-3.66.1
SUSE Linux Enterprise Server 15 SP1-LTSS
libjavascriptcoregtk-4_0-18-2.30.5-3.66.1
libwebkit2gtk-4_0-37-2.30.5-3.66.1
libwebkit2gtk3-lang-2.30.5-3.66.1
typelib-1_0-JavaScriptCore-4_0-2.30.5-3.66.1
typelib-1_0-WebKit2-4_0-2.30.5-3.66.1
typelib-1_0-WebKit2WebExtension-4_0-2.30.5-3.66.1
webkit2gtk-4_0-injected-bundles-2.30.5-3.66.1
webkit2gtk3-devel-2.30.5-3.66.1
SUSE Linux Enterprise Server 15-LTSS
libjavascriptcoregtk-4_0-18-2.30.5-3.66.1
libwebkit2gtk-4_0-37-2.30.5-3.66.1
libwebkit2gtk3-lang-2.30.5-3.66.1
typelib-1_0-JavaScriptCore-4_0-2.30.5-3.66.1
typelib-1_0-WebKit2-4_0-2.30.5-3.66.1
typelib-1_0-WebKit2WebExtension-4_0-2.30.5-3.66.1
webkit2gtk-4_0-injected-bundles-2.30.5-3.66.1
webkit2gtk3-devel-2.30.5-3.66.1
SUSE Linux Enterprise Server for SAP Applications 15
libjavascriptcoregtk-4_0-18-2.30.5-3.66.1
libwebkit2gtk-4_0-37-2.30.5-3.66.1
libwebkit2gtk3-lang-2.30.5-3.66.1
typelib-1_0-JavaScriptCore-4_0-2.30.5-3.66.1
typelib-1_0-WebKit2-4_0-2.30.5-3.66.1
typelib-1_0-WebKit2WebExtension-4_0-2.30.5-3.66.1
webkit2gtk-4_0-injected-bundles-2.30.5-3.66.1
webkit2gtk3-devel-2.30.5-3.66.1
SUSE Linux Enterprise Server for SAP Applications 15 SP1
libjavascriptcoregtk-4_0-18-2.30.5-3.66.1
libwebkit2gtk-4_0-37-2.30.5-3.66.1
libwebkit2gtk3-lang-2.30.5-3.66.1
typelib-1_0-JavaScriptCore-4_0-2.30.5-3.66.1
typelib-1_0-WebKit2-4_0-2.30.5-3.66.1
typelib-1_0-WebKit2WebExtension-4_0-2.30.5-3.66.1
webkit2gtk-4_0-injected-bundles-2.30.5-3.66.1
webkit2gtk3-devel-2.30.5-3.66.1
SUSE Manager Proxy 4.0
libjavascriptcoregtk-4_0-18-2.30.5-3.66.1
libwebkit2gtk-4_0-37-2.30.5-3.66.1
libwebkit2gtk3-lang-2.30.5-3.66.1
typelib-1_0-JavaScriptCore-4_0-2.30.5-3.66.1
typelib-1_0-WebKit2-4_0-2.30.5-3.66.1
typelib-1_0-WebKit2WebExtension-4_0-2.30.5-3.66.1
webkit2gtk-4_0-injected-bundles-2.30.5-3.66.1
webkit2gtk3-devel-2.30.5-3.66.1
SUSE Manager Retail Branch Server 4.0
libjavascriptcoregtk-4_0-18-2.30.5-3.66.1
libwebkit2gtk-4_0-37-2.30.5-3.66.1
libwebkit2gtk3-lang-2.30.5-3.66.1
typelib-1_0-JavaScriptCore-4_0-2.30.5-3.66.1
typelib-1_0-WebKit2-4_0-2.30.5-3.66.1
typelib-1_0-WebKit2WebExtension-4_0-2.30.5-3.66.1
webkit2gtk-4_0-injected-bundles-2.30.5-3.66.1
webkit2gtk3-devel-2.30.5-3.66.1
SUSE Manager Server 4.0
libjavascriptcoregtk-4_0-18-2.30.5-3.66.1
libwebkit2gtk-4_0-37-2.30.5-3.66.1
libwebkit2gtk3-lang-2.30.5-3.66.1
typelib-1_0-JavaScriptCore-4_0-2.30.5-3.66.1
typelib-1_0-WebKit2-4_0-2.30.5-3.66.1
typelib-1_0-WebKit2WebExtension-4_0-2.30.5-3.66.1
webkit2gtk-4_0-injected-bundles-2.30.5-3.66.1
webkit2gtk3-devel-2.30.5-3.66.1
Ссылки
- Link for SUSE-SU-2021:0583-1
- E-Mail link for SUSE-SU-2021:0583-1
- SUSE Security Ratings
- SUSE Bug 1182286
- SUSE CVE CVE-2020-13558 page
Описание
A code execution vulnerability exists in the AudioSourceProviderGStreamer functionality of Webkit WebKitGTK 2.30.1. A specially crafted web page can lead to a use after free.
Затронутые продукты
SUSE Enterprise Storage 6:libjavascriptcoregtk-4_0-18-2.30.5-3.66.1
SUSE Enterprise Storage 6:libwebkit2gtk-4_0-37-2.30.5-3.66.1
SUSE Enterprise Storage 6:libwebkit2gtk3-lang-2.30.5-3.66.1
SUSE Enterprise Storage 6:typelib-1_0-JavaScriptCore-4_0-2.30.5-3.66.1
Ссылки
- CVE-2020-13558
- SUSE Bug 1182286