Описание
Security update for webkit2gtk3
This update for webkit2gtk3 fixes the following issues:
- CVE-2024-40776: Fixed a use-after-free issue with improved memory management (bsc#1228613).
- CVE-2024-40779: Fixed a out-of-bounds read with improved bounds checking (bsc#1228693).
- CVE-2024-40780: Fixed another out-of-bounds read with improved bounds checking (bsc#1228694).
- CVE-2024-40782: Fixed a second use-after-free issue with improved memory management (bsc#1228695).
Список пакетов
SUSE Enterprise Storage 7.1
SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS
SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS
SUSE Linux Enterprise Server 15 SP2-LTSS
SUSE Linux Enterprise Server 15 SP3-LTSS
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP3
Ссылки
- Link for SUSE-SU-2024:2949-1
- E-Mail link for SUSE-SU-2024:2949-1
- SUSE Security Ratings
- SUSE Bug 1228613
- SUSE Bug 1228693
- SUSE Bug 1228694
- SUSE Bug 1228695
- SUSE CVE CVE-2024-40776 page
- SUSE CVE CVE-2024-40779 page
- SUSE CVE CVE-2024-40780 page
- SUSE CVE CVE-2024-40782 page
Описание
A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, Safari 17.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6, tvOS 17.6, visionOS 1.3, macOS Sonoma 14.6. Processing maliciously crafted web content may lead to an unexpected process crash.
Затронутые продукты
Ссылки
- CVE-2024-40776
- SUSE Bug 1228613
Описание
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, Safari 17.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6, tvOS 17.6, visionOS 1.3, macOS Sonoma 14.6. Processing maliciously crafted web content may lead to an unexpected process crash.
Затронутые продукты
Ссылки
- CVE-2024-40779
- SUSE Bug 1228693
Описание
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, Safari 17.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6, tvOS 17.6, visionOS 1.3, macOS Sonoma 14.6. Processing maliciously crafted web content may lead to an unexpected process crash.
Затронутые продукты
Ссылки
- CVE-2024-40780
- SUSE Bug 1228694
Описание
A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, Safari 17.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6, tvOS 17.6, visionOS 1.3, macOS Sonoma 14.6. Processing maliciously crafted web content may lead to an unexpected process crash.
Затронутые продукты
Ссылки
- CVE-2024-40782
- SUSE Bug 1228695