Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2024:1293-1

Опубликовано: 15 апр. 2024
Источник: suse-cvrf

Описание

Security update for webkit2gtk3

webkit2gtk3 was updated to fix the following issues:

Update to version 2.44.0 (boo#1222010):

  • CVE-2024-23252:

    Credit to anbu1024 of SecANT. Impact: Processing web content may lead to a denial-of-service. Description: The issue was addressed with improved memory handling.

  • CVE-2024-23254:

    Credit to James Lee (@Windowsrcer). Impact: A malicious website may exfiltrate audio data cross-origin. Description: The issue was addressed with improved UI handling.

  • CVE-2024-23263:

    Credit to Johan Carlsson (joaxcar). Impact: Processing maliciously crafted web content may prevent Content Security Policy from being enforced. Description: A logic issue was addressed with improved validation.

  • CVE-2024-23280:

    Credit to An anonymous researcher. Impact: A maliciously crafted webpage may be able to fingerprint the user. Description: An injection issue was addressed with improved validation.

  • CVE-2024-23284:

    Credit to Georg Felber and Marco Squarcina. Impact: Processing maliciously crafted web content may prevent Content Security Policy from being enforced. Description: A logic issue was addressed with improved state management.

  • CVE-2023-42950:

    Credit to Nan Wang (@eternalsakura13) of 360 Vulnerability Research Institute and rushikesh nandedkar. Impact: Processing maliciously crafted web content may lead to arbitrary code execution. Description: A use after free issue was addressed with improved memory management.

  • CVE-2023-42956:

    Credit to SungKwon Lee (Demon.Team). Impact: Processing web content may lead to a denial-of-service. Description: The issue was addressed with improved memory handling.

  • CVE-2023-42843:

    Credit to Kacper Kwapisz (@KKKas_). Impact: Visiting a malicious website may lead to address bar spoofing. Description: An inconsistent user interface issue was addressed with improved state management.

  • Make the DOM accessibility tree reachable from UI process with GTK4.
  • Removed the X11 and WPE renderers in favor of DMA-BUF.
  • Improved vblank synchronization when rendering.
  • Removed key event reinjection in GTK4 to make keyboard shortcuts work in web sites.
  • Fix gamepads detection by correctly handling focused window in GTK4.
  • Use WebAssembly on aarch64. It is the upstream default and no longer makes the build fail. Stop passing -DENABLE_C_LOOP=ON, -DENABLE_WEBASSEMBLY=OFF and -DENABLE_SAMPLING_PROFILER=OFF for the same reason.

Список пакетов

SUSE Linux Enterprise Server 12 SP5
libjavascriptcoregtk-4_0-18-2.44.0-4.3.2
libwebkit2gtk-4_0-37-2.44.0-4.3.2
libwebkit2gtk3-lang-2.44.0-4.3.2
typelib-1_0-JavaScriptCore-4_0-2.44.0-4.3.2
typelib-1_0-WebKit2-4_0-2.44.0-4.3.2
typelib-1_0-WebKit2WebExtension-4_0-2.44.0-4.3.2
webkit2gtk-4_0-injected-bundles-2.44.0-4.3.2
SUSE Linux Enterprise Server for SAP Applications 12 SP5
libjavascriptcoregtk-4_0-18-2.44.0-4.3.2
libwebkit2gtk-4_0-37-2.44.0-4.3.2
libwebkit2gtk3-lang-2.44.0-4.3.2
typelib-1_0-JavaScriptCore-4_0-2.44.0-4.3.2
typelib-1_0-WebKit2-4_0-2.44.0-4.3.2
typelib-1_0-WebKit2WebExtension-4_0-2.44.0-4.3.2
webkit2gtk-4_0-injected-bundles-2.44.0-4.3.2
SUSE Linux Enterprise Software Development Kit 12 SP5
typelib-1_0-WebKit2WebExtension-4_0-2.44.0-4.3.2
webkit2gtk3-devel-2.44.0-4.3.2
SUSE Linux Enterprise Workstation Extension 12 SP5
libjavascriptcoregtk-4_0-18-32bit-2.44.0-4.3.2

Ссылки

Описание

An inconsistent user interface issue was addressed with improved state management. This issue is fixed in iOS 16.7.2 and iPadOS 16.7.2, iOS 17.1 and iPadOS 17.1, Safari 17.1, macOS Sonoma 14.1. Visiting a malicious website may lead to address bar spoofing.

Затронутые продукты
SUSE Linux Enterprise Server 12 SP5:libjavascriptcoregtk-4_0-18-2.44.0-4.3.2
SUSE Linux Enterprise Server 12 SP5:libwebkit2gtk-4_0-37-2.44.0-4.3.2
SUSE Linux Enterprise Server 12 SP5:libwebkit2gtk3-lang-2.44.0-4.3.2
SUSE Linux Enterprise Server 12 SP5:typelib-1_0-JavaScriptCore-4_0-2.44.0-4.3.2
Ссылки

Описание

A use after free issue was addressed with improved memory management. This issue is fixed in Safari 17.2, iOS 17.2 and iPadOS 17.2, tvOS 17.2, watchOS 10.2, macOS Sonoma 14.2. Processing maliciously crafted web content may lead to arbitrary code execution.

Затронутые продукты
SUSE Linux Enterprise Server 12 SP5:libjavascriptcoregtk-4_0-18-2.44.0-4.3.2
SUSE Linux Enterprise Server 12 SP5:libwebkit2gtk-4_0-37-2.44.0-4.3.2
SUSE Linux Enterprise Server 12 SP5:libwebkit2gtk3-lang-2.44.0-4.3.2
SUSE Linux Enterprise Server 12 SP5:typelib-1_0-JavaScriptCore-4_0-2.44.0-4.3.2
Ссылки

Описание

The issue was addressed with improved memory handling. This issue is fixed in Safari 17.2, iOS 17.2 and iPadOS 17.2, macOS Sonoma 14.2. Processing web content may lead to a denial-of-service.

Затронутые продукты
SUSE Linux Enterprise Server 12 SP5:libjavascriptcoregtk-4_0-18-2.44.0-4.3.2
SUSE Linux Enterprise Server 12 SP5:libwebkit2gtk-4_0-37-2.44.0-4.3.2
SUSE Linux Enterprise Server 12 SP5:libwebkit2gtk3-lang-2.44.0-4.3.2
SUSE Linux Enterprise Server 12 SP5:typelib-1_0-JavaScriptCore-4_0-2.44.0-4.3.2
Ссылки

Описание

** REJECT ** This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

Затронутые продукты
SUSE Linux Enterprise Server 12 SP5:libjavascriptcoregtk-4_0-18-2.44.0-4.3.2
SUSE Linux Enterprise Server 12 SP5:libwebkit2gtk-4_0-37-2.44.0-4.3.2
SUSE Linux Enterprise Server 12 SP5:libwebkit2gtk3-lang-2.44.0-4.3.2
SUSE Linux Enterprise Server 12 SP5:typelib-1_0-JavaScriptCore-4_0-2.44.0-4.3.2
Ссылки

Описание

The issue was addressed with improved UI handling. This issue is fixed in tvOS 17.4, macOS Sonoma 14.4, visionOS 1.1, iOS 17.4 and iPadOS 17.4, watchOS 10.4, Safari 17.4. A malicious website may exfiltrate audio data cross-origin.

Затронутые продукты
SUSE Linux Enterprise Server 12 SP5:libjavascriptcoregtk-4_0-18-2.44.0-4.3.2
SUSE Linux Enterprise Server 12 SP5:libwebkit2gtk-4_0-37-2.44.0-4.3.2
SUSE Linux Enterprise Server 12 SP5:libwebkit2gtk3-lang-2.44.0-4.3.2
SUSE Linux Enterprise Server 12 SP5:typelib-1_0-JavaScriptCore-4_0-2.44.0-4.3.2
Ссылки

Описание

A logic issue was addressed with improved validation. This issue is fixed in tvOS 17.4, macOS Sonoma 14.4, visionOS 1.1, iOS 17.4 and iPadOS 17.4, watchOS 10.4, iOS 16.7.6 and iPadOS 16.7.6, Safari 17.4. Processing maliciously crafted web content may prevent Content Security Policy from being enforced.

Затронутые продукты
SUSE Linux Enterprise Server 12 SP5:libjavascriptcoregtk-4_0-18-2.44.0-4.3.2
SUSE Linux Enterprise Server 12 SP5:libwebkit2gtk-4_0-37-2.44.0-4.3.2
SUSE Linux Enterprise Server 12 SP5:libwebkit2gtk3-lang-2.44.0-4.3.2
SUSE Linux Enterprise Server 12 SP5:typelib-1_0-JavaScriptCore-4_0-2.44.0-4.3.2
Ссылки

Описание

An injection issue was addressed with improved validation. This issue is fixed in Safari 17.4, macOS Sonoma 14.4, iOS 17.4 and iPadOS 17.4, watchOS 10.4, tvOS 17.4. A maliciously crafted webpage may be able to fingerprint the user.

Затронутые продукты
SUSE Linux Enterprise Server 12 SP5:libjavascriptcoregtk-4_0-18-2.44.0-4.3.2
SUSE Linux Enterprise Server 12 SP5:libwebkit2gtk-4_0-37-2.44.0-4.3.2
SUSE Linux Enterprise Server 12 SP5:libwebkit2gtk3-lang-2.44.0-4.3.2
SUSE Linux Enterprise Server 12 SP5:typelib-1_0-JavaScriptCore-4_0-2.44.0-4.3.2
Ссылки

Описание

A logic issue was addressed with improved state management. This issue is fixed in tvOS 17.4, macOS Sonoma 14.4, visionOS 1.1, iOS 17.4 and iPadOS 17.4, watchOS 10.4, iOS 16.7.6 and iPadOS 16.7.6, Safari 17.4. Processing maliciously crafted web content may prevent Content Security Policy from being enforced.

Затронутые продукты
SUSE Linux Enterprise Server 12 SP5:libjavascriptcoregtk-4_0-18-2.44.0-4.3.2
SUSE Linux Enterprise Server 12 SP5:libwebkit2gtk-4_0-37-2.44.0-4.3.2
SUSE Linux Enterprise Server 12 SP5:libwebkit2gtk3-lang-2.44.0-4.3.2
SUSE Linux Enterprise Server 12 SP5:typelib-1_0-JavaScriptCore-4_0-2.44.0-4.3.2
Ссылки
Уязвимость SUSE-SU-2024:1293-1