Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

openSUSE-SU-2019:2208-1

Опубликовано: 28 сент. 2019
Источник: suse-cvrf

Описание

Security update for webkit2gtk3

This update for webkit2gtk3 fixes the following issues:

Security issues fixed:

  • CVE-2019-8673, CVE-2019-8678, CVE-2019-8686, CVE-2019-8683, CVE-2019-8671, CVE-2019-8595, CVE-2019-8684, CVE-2019-8681, CVE-2019-8615, CVE-2019-8689, CVE-2019-8680, CVE-2019-8672, CVE-2019-8676, CVE-2019-8666, CVE-2019-8644, CVE-2019-8658, CVE-2019-8690, CVE-2019-8688, CVE-2019-8649, CVE-2019-8679, CVE-2019-8687, CVE-2019-8669, CVE-2019-8677, CVE-2019-8607 (bsc#1148931).

This update was imported from the SUSE:SLE-15:Update update project.

Список пакетов

openSUSE Leap 15.1
libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1
libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1
libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1
libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1
libwebkit2gtk3-lang-2.24.4-lp151.2.6.1
typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1
typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1
typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1
webkit-jsc-4-2.24.4-lp151.2.6.1
webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1
webkit2gtk3-devel-2.24.4-lp151.2.6.1
webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1
webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1

Ссылки

Описание

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may lead to arbitrary code execution.

Затронутые продукты
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1
Ссылки

Описание

An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may result in the disclosure of process memory.

Затронутые продукты
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1
Ссылки

Описание

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may lead to arbitrary code execution.

Затронутые продукты
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1
Ссылки

Описание

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.

Затронутые продукты
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1
Ссылки

Описание

A logic issue existed in the handling of synchronous page loads. This issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to universal cross site scripting.

Затронутые продукты
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1
Ссылки

Описание

A logic issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to universal cross site scripting.

Затронутые продукты
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1
Ссылки

Описание

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.

Затронутые продукты
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1
Ссылки

Описание

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.

Затронутые продукты
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1
Ссылки

Описание

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.

Затронутые продукты
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1
Ссылки

Описание

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.

Затронутые продукты
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1
Ссылки

Описание

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.

Затронутые продукты
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1
Ссылки

Описание

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.

Затронутые продукты
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1
Ссылки

Описание

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.

Затронутые продукты
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1
Ссылки

Описание

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.

Затронутые продукты
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1
Ссылки

Описание

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.

Затронутые продукты
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1
Ссылки

Описание

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.

Затронутые продукты
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1
Ссылки

Описание

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.

Затронутые продукты
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1
Ссылки

Описание

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.

Затронутые продукты
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1
Ссылки

Описание

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.

Затронутые продукты
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1
Ссылки

Описание

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.

Затронутые продукты
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1
Ссылки

Описание

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.

Затронутые продукты
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1
Ссылки

Описание

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.

Затронутые продукты
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1
Ссылки

Описание

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.

Затронутые продукты
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1
Ссылки

Описание

A logic issue existed in the handling of document loads. This issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to universal cross site scripting.

Затронутые продукты
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1
openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1
Ссылки
Уязвимость openSUSE-SU-2019:2208-1