Описание
Security update for webkit2gtk3
This update for webkit2gtk3 fixes the following issues:
- Update to version 2.44.2
- CVE-2024-27834: Fixed a vulnerability where an attacker with arbitrary read and write capability may be able to bypass Pointer Authentication. (bsc#1225071)
Список пакетов
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS
WebKitGTK-4.0-lang-2.44.2-150400.4.83.2
WebKitGTK-4.1-lang-2.44.2-150400.4.83.2
WebKitGTK-6.0-lang-2.44.2-150400.4.83.2
libjavascriptcoregtk-4_0-18-2.44.2-150400.4.83.2
libjavascriptcoregtk-4_1-0-2.44.2-150400.4.83.2
libjavascriptcoregtk-6_0-1-2.44.2-150400.4.83.2
libwebkit2gtk-4_0-37-2.44.2-150400.4.83.2
libwebkit2gtk-4_1-0-2.44.2-150400.4.83.2
libwebkitgtk-6_0-4-2.44.2-150400.4.83.2
typelib-1_0-JavaScriptCore-4_0-2.44.2-150400.4.83.2
typelib-1_0-JavaScriptCore-4_1-2.44.2-150400.4.83.2
typelib-1_0-WebKit2-4_0-2.44.2-150400.4.83.2
typelib-1_0-WebKit2-4_1-2.44.2-150400.4.83.2
typelib-1_0-WebKit2WebExtension-4_0-2.44.2-150400.4.83.2
typelib-1_0-WebKit2WebExtension-4_1-2.44.2-150400.4.83.2
webkit2gtk-4_0-injected-bundles-2.44.2-150400.4.83.2
webkit2gtk-4_1-injected-bundles-2.44.2-150400.4.83.2
webkit2gtk3-devel-2.44.2-150400.4.83.2
webkit2gtk3-soup2-devel-2.44.2-150400.4.83.2
webkitgtk-6_0-injected-bundles-2.44.2-150400.4.83.2
SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS
WebKitGTK-4.0-lang-2.44.2-150400.4.83.2
WebKitGTK-4.1-lang-2.44.2-150400.4.83.2
WebKitGTK-6.0-lang-2.44.2-150400.4.83.2
libjavascriptcoregtk-4_0-18-2.44.2-150400.4.83.2
libjavascriptcoregtk-4_1-0-2.44.2-150400.4.83.2
libjavascriptcoregtk-6_0-1-2.44.2-150400.4.83.2
libwebkit2gtk-4_0-37-2.44.2-150400.4.83.2
libwebkit2gtk-4_1-0-2.44.2-150400.4.83.2
libwebkitgtk-6_0-4-2.44.2-150400.4.83.2
typelib-1_0-JavaScriptCore-4_0-2.44.2-150400.4.83.2
typelib-1_0-JavaScriptCore-4_1-2.44.2-150400.4.83.2
typelib-1_0-WebKit2-4_0-2.44.2-150400.4.83.2
typelib-1_0-WebKit2-4_1-2.44.2-150400.4.83.2
typelib-1_0-WebKit2WebExtension-4_0-2.44.2-150400.4.83.2
typelib-1_0-WebKit2WebExtension-4_1-2.44.2-150400.4.83.2
webkit2gtk-4_0-injected-bundles-2.44.2-150400.4.83.2
webkit2gtk-4_1-injected-bundles-2.44.2-150400.4.83.2
webkit2gtk3-devel-2.44.2-150400.4.83.2
webkit2gtk3-soup2-devel-2.44.2-150400.4.83.2
webkitgtk-6_0-injected-bundles-2.44.2-150400.4.83.2
SUSE Linux Enterprise Module for Basesystem 15 SP5
WebKitGTK-4.0-lang-2.44.2-150400.4.83.2
libjavascriptcoregtk-4_0-18-2.44.2-150400.4.83.2
libwebkit2gtk-4_0-37-2.44.2-150400.4.83.2
typelib-1_0-JavaScriptCore-4_0-2.44.2-150400.4.83.2
typelib-1_0-WebKit2-4_0-2.44.2-150400.4.83.2
typelib-1_0-WebKit2WebExtension-4_0-2.44.2-150400.4.83.2
webkit2gtk-4_0-injected-bundles-2.44.2-150400.4.83.2
webkit2gtk3-soup2-devel-2.44.2-150400.4.83.2
SUSE Linux Enterprise Module for Desktop Applications 15 SP5
WebKitGTK-4.1-lang-2.44.2-150400.4.83.2
libjavascriptcoregtk-4_1-0-2.44.2-150400.4.83.2
libwebkit2gtk-4_1-0-2.44.2-150400.4.83.2
typelib-1_0-JavaScriptCore-4_1-2.44.2-150400.4.83.2
typelib-1_0-WebKit2-4_1-2.44.2-150400.4.83.2
typelib-1_0-WebKit2WebExtension-4_1-2.44.2-150400.4.83.2
webkit2gtk-4_1-injected-bundles-2.44.2-150400.4.83.2
webkit2gtk3-devel-2.44.2-150400.4.83.2
SUSE Linux Enterprise Module for Development Tools 15 SP5
WebKitGTK-6.0-lang-2.44.2-150400.4.83.2
libjavascriptcoregtk-6_0-1-2.44.2-150400.4.83.2
libwebkitgtk-6_0-4-2.44.2-150400.4.83.2
webkitgtk-6_0-injected-bundles-2.44.2-150400.4.83.2
SUSE Linux Enterprise Server 15 SP4-LTSS
WebKitGTK-4.0-lang-2.44.2-150400.4.83.2
WebKitGTK-4.1-lang-2.44.2-150400.4.83.2
WebKitGTK-6.0-lang-2.44.2-150400.4.83.2
libjavascriptcoregtk-4_0-18-2.44.2-150400.4.83.2
libjavascriptcoregtk-4_1-0-2.44.2-150400.4.83.2
libjavascriptcoregtk-6_0-1-2.44.2-150400.4.83.2
libwebkit2gtk-4_0-37-2.44.2-150400.4.83.2
libwebkit2gtk-4_1-0-2.44.2-150400.4.83.2
libwebkitgtk-6_0-4-2.44.2-150400.4.83.2
typelib-1_0-JavaScriptCore-4_0-2.44.2-150400.4.83.2
typelib-1_0-JavaScriptCore-4_1-2.44.2-150400.4.83.2
typelib-1_0-WebKit2-4_0-2.44.2-150400.4.83.2
typelib-1_0-WebKit2-4_1-2.44.2-150400.4.83.2
typelib-1_0-WebKit2WebExtension-4_0-2.44.2-150400.4.83.2
typelib-1_0-WebKit2WebExtension-4_1-2.44.2-150400.4.83.2
webkit2gtk-4_0-injected-bundles-2.44.2-150400.4.83.2
webkit2gtk-4_1-injected-bundles-2.44.2-150400.4.83.2
webkit2gtk3-devel-2.44.2-150400.4.83.2
webkit2gtk3-soup2-devel-2.44.2-150400.4.83.2
webkitgtk-6_0-injected-bundles-2.44.2-150400.4.83.2
SUSE Linux Enterprise Server for SAP Applications 15 SP4
WebKitGTK-4.0-lang-2.44.2-150400.4.83.2
WebKitGTK-4.1-lang-2.44.2-150400.4.83.2
WebKitGTK-6.0-lang-2.44.2-150400.4.83.2
libjavascriptcoregtk-4_0-18-2.44.2-150400.4.83.2
libjavascriptcoregtk-4_1-0-2.44.2-150400.4.83.2
libjavascriptcoregtk-6_0-1-2.44.2-150400.4.83.2
libwebkit2gtk-4_0-37-2.44.2-150400.4.83.2
libwebkit2gtk-4_1-0-2.44.2-150400.4.83.2
libwebkitgtk-6_0-4-2.44.2-150400.4.83.2
typelib-1_0-JavaScriptCore-4_0-2.44.2-150400.4.83.2
typelib-1_0-JavaScriptCore-4_1-2.44.2-150400.4.83.2
typelib-1_0-WebKit2-4_0-2.44.2-150400.4.83.2
typelib-1_0-WebKit2-4_1-2.44.2-150400.4.83.2
typelib-1_0-WebKit2WebExtension-4_0-2.44.2-150400.4.83.2
typelib-1_0-WebKit2WebExtension-4_1-2.44.2-150400.4.83.2
webkit2gtk-4_0-injected-bundles-2.44.2-150400.4.83.2
webkit2gtk-4_1-injected-bundles-2.44.2-150400.4.83.2
webkit2gtk3-devel-2.44.2-150400.4.83.2
webkit2gtk3-soup2-devel-2.44.2-150400.4.83.2
webkitgtk-6_0-injected-bundles-2.44.2-150400.4.83.2
SUSE Manager Proxy 4.3
WebKitGTK-4.0-lang-2.44.2-150400.4.83.2
libjavascriptcoregtk-4_0-18-2.44.2-150400.4.83.2
libwebkit2gtk-4_0-37-2.44.2-150400.4.83.2
typelib-1_0-JavaScriptCore-4_0-2.44.2-150400.4.83.2
typelib-1_0-WebKit2-4_0-2.44.2-150400.4.83.2
typelib-1_0-WebKit2WebExtension-4_0-2.44.2-150400.4.83.2
webkit2gtk-4_0-injected-bundles-2.44.2-150400.4.83.2
webkit2gtk3-soup2-devel-2.44.2-150400.4.83.2
SUSE Manager Server 4.3
WebKitGTK-4.0-lang-2.44.2-150400.4.83.2
libjavascriptcoregtk-4_0-18-2.44.2-150400.4.83.2
libwebkit2gtk-4_0-37-2.44.2-150400.4.83.2
typelib-1_0-JavaScriptCore-4_0-2.44.2-150400.4.83.2
typelib-1_0-WebKit2-4_0-2.44.2-150400.4.83.2
typelib-1_0-WebKit2WebExtension-4_0-2.44.2-150400.4.83.2
webkit2gtk-4_0-injected-bundles-2.44.2-150400.4.83.2
webkit2gtk3-soup2-devel-2.44.2-150400.4.83.2
openSUSE Leap 15.5
WebKitGTK-4.0-lang-2.44.2-150400.4.83.2
WebKitGTK-4.1-lang-2.44.2-150400.4.83.2
WebKitGTK-6.0-lang-2.44.2-150400.4.83.2
libjavascriptcoregtk-4_0-18-2.44.2-150400.4.83.2
libjavascriptcoregtk-4_0-18-32bit-2.44.2-150400.4.83.2
libjavascriptcoregtk-4_1-0-2.44.2-150400.4.83.2
libjavascriptcoregtk-4_1-0-32bit-2.44.2-150400.4.83.2
libjavascriptcoregtk-6_0-1-2.44.2-150400.4.83.2
libwebkit2gtk-4_0-37-2.44.2-150400.4.83.2
libwebkit2gtk-4_0-37-32bit-2.44.2-150400.4.83.2
libwebkit2gtk-4_1-0-2.44.2-150400.4.83.2
libwebkit2gtk-4_1-0-32bit-2.44.2-150400.4.83.2
libwebkitgtk-6_0-4-2.44.2-150400.4.83.2
typelib-1_0-JavaScriptCore-4_0-2.44.2-150400.4.83.2
typelib-1_0-JavaScriptCore-4_1-2.44.2-150400.4.83.2
typelib-1_0-JavaScriptCore-6_0-2.44.2-150400.4.83.2
typelib-1_0-WebKit-6_0-2.44.2-150400.4.83.2
typelib-1_0-WebKit2-4_0-2.44.2-150400.4.83.2
typelib-1_0-WebKit2-4_1-2.44.2-150400.4.83.2
typelib-1_0-WebKit2WebExtension-4_0-2.44.2-150400.4.83.2
typelib-1_0-WebKit2WebExtension-4_1-2.44.2-150400.4.83.2
typelib-1_0-WebKitWebProcessExtension-6_0-2.44.2-150400.4.83.2
webkit-jsc-4-2.44.2-150400.4.83.2
webkit-jsc-4.1-2.44.2-150400.4.83.2
webkit-jsc-6.0-2.44.2-150400.4.83.2
webkit2gtk-4_0-injected-bundles-2.44.2-150400.4.83.2
webkit2gtk-4_1-injected-bundles-2.44.2-150400.4.83.2
webkit2gtk3-devel-2.44.2-150400.4.83.2
webkit2gtk3-minibrowser-2.44.2-150400.4.83.2
webkit2gtk3-soup2-devel-2.44.2-150400.4.83.2
webkit2gtk3-soup2-minibrowser-2.44.2-150400.4.83.2
webkit2gtk4-devel-2.44.2-150400.4.83.2
webkit2gtk4-minibrowser-2.44.2-150400.4.83.2
webkitgtk-6_0-injected-bundles-2.44.2-150400.4.83.2
Ссылки
- Link for SUSE-SU-2024:2065-1
- E-Mail link for SUSE-SU-2024:2065-1
- SUSE Security Ratings
- SUSE Bug 1222905
- SUSE Bug 1225071
- SUSE CVE CVE-2024-23226 page
- SUSE CVE CVE-2024-27834 page
Описание
The issue was addressed with improved memory handling. This issue is fixed in macOS Sonoma 14.4, visionOS 1.1, iOS 17.4 and iPadOS 17.4, watchOS 10.4, tvOS 17.4. Processing web content may lead to arbitrary code execution.
Затронутые продукты
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:WebKitGTK-4.0-lang-2.44.2-150400.4.83.2
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:WebKitGTK-4.1-lang-2.44.2-150400.4.83.2
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:WebKitGTK-6.0-lang-2.44.2-150400.4.83.2
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libjavascriptcoregtk-4_0-18-2.44.2-150400.4.83.2
Ссылки
- CVE-2024-23226
- SUSE Bug 1222905
Описание
The issue was addressed with improved checks. This issue is fixed in iOS 17.5 and iPadOS 17.5, tvOS 17.5, Safari 17.5, watchOS 10.5, macOS Sonoma 14.5. An attacker with arbitrary read and write capability may be able to bypass Pointer Authentication.
Затронутые продукты
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:WebKitGTK-4.0-lang-2.44.2-150400.4.83.2
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:WebKitGTK-4.1-lang-2.44.2-150400.4.83.2
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:WebKitGTK-6.0-lang-2.44.2-150400.4.83.2
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libjavascriptcoregtk-4_0-18-2.44.2-150400.4.83.2
Ссылки
- CVE-2024-27834
- SUSE Bug 1225071