Download
| Alert*
|
oval:org.secpod.oval:def:89045092
This update for webkit2gtk3 fixes the following issues: - Update to version 2.32.1: + Improve handling of Media Capture devices. + Improve WebAudio playback. + Improve video orientation handling. + Improve seeking support for MSE playback. + Improve flush support in EME decryptors. + Fix HTTP status ... oval:org.secpod.oval:def:72096 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK. oval:org.secpod.oval:def:89044296 This update for webkit2gtk3 fixes the following issues: - Update to version 2.32.0 : * Fix the authentication request port when URL omits the port. * Fix iframe scrolling when main frame is scrolled in async * scrolling mode. * Stop using g_memdup. * Show a warning message when overriding signal han ... oval:org.secpod.oval:def:119664 WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. This package contains WebKit2 based WebKitGTK for GTK 3. oval:org.secpod.oval:def:1801947 *CVE-2021-1788 Versions affected: WebKitGTK before 2.32.0 and WPE WebKit before 2.32.0. Processing maliciously crafted web content may lead to arbitrary code execution. A use after free issue was addressed with improved memory management. *CVE-2021-1844 Versions affected: WebKitGTK before 2.32.0 and ... oval:org.secpod.oval:def:69969 The host is missing a security update according to Apple advisory, APPLE-SA-2021-03-08-3. The update is required to fix a memory corruption vulnerability. A flaw is present in the application, which fails to handle a validation issue. Successful exploitation allow attackers to execute arbitrary code ... oval:org.secpod.oval:def:605545 The following vulnerabilities have been discovered in the libwebkit2gtk-4.0-dev web engine: CVE-2021-1788 Francisco Alonso discovered that processing maliciously crafted web content may lead to arbitrary code execution. CVE-2021-1844 Clement Lecigne and Alison Huffman discovered that processing mali ... oval:org.secpod.oval:def:2106517 Oracle Solaris 11 - ( CVE-2021-1871 ) oval:org.secpod.oval:def:69970 The host is missing a security update according to Apple advisory, APPLE-SA-2021-03-08-2. The update is required to fix a memory corruption vulnerability. A flaw is present in the application, which fails to handle a validation issue. Successful exploitation allow attackers to execute arbitrary code ... oval:org.secpod.oval:def:69971 The host is installed with Apple Mac OS 11 before 11.2.3 or Apple Safari 14.0.3 on MacOS Mojave or MacOS Catalina and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a validation issue. Successful exploitation allow attackers to execute arbi ... oval:org.secpod.oval:def:705997 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK. oval:org.secpod.oval:def:89047162 This update for webkit2gtk3 fixes the following issues: - Update to version 2.32.0 : * Fix the authentication request port when URL omits the port. * Fix iframe scrolling when main frame is scrolled in async * scrolling mode. * Stop using g_memdup. * Show a warning message when overriding signal han ... oval:org.secpod.oval:def:73112 The following vulnerabilities have been discovered in the libwebkit2gtk-4.0-dev web engine: CVE-2021-1788 Francisco Alonso discovered that processing maliciously crafted web content may lead to arbitrary code execution. CVE-2021-1844 Clement Lecigne and Alison Huffman discovered that processing mali ... oval:org.secpod.oval:def:506478 GNOME is the default desktop environment of Red Hat Enterprise Linux. The following packages have been upgraded to a later upstream version: gdm , webkit2gtk3 . Security Fix: * webkitgtk: Use-after-free in AudioSourceProviderGStreamer leading to arbitrary code execution * LibRaw: Stack buffer over ... oval:org.secpod.oval:def:2500376 GNOME is the default desktop environment of AlmaLinux. oval:org.secpod.oval:def:76232 GNOME is the default desktop environment of Red Hat Enterprise Linux. The following packages have been upgraded to a later upstream version: gdm , webkit2gtk3 . Security Fix: * webkitgtk: Use-after-free in AudioSourceProviderGStreamer leading to arbitrary code execution * LibRaw: Stack buffer over ... oval:org.secpod.oval:def:1505266 accountsservice [0.6.55-2] - Add support for user templates so user can specify default session Resolves: #1812788 gdm [40.0-14] - Fix XDMCP Resolves: #2004170 - Fix crash at shutdown Related: #2004170 [40.0-13] - Disable Wayland on HyperV - Fix Xorg fallback Related: #1998989 [40.0-12] - Redisable ... oval:org.secpod.oval:def:89045920 This update for webkit2gtk3 fixes the following issues: - Update to version 2.34.3 . - CVE-2021-30887: Fixed logic issue allowing unexpectedly unenforced Content Security Policy when processing maliciously crafted web content. - CVE-2021-30890: Fixed logic issue allowing universal cross site scripti ... oval:org.secpod.oval:def:89047402 This update for webkit2gtk3 fixes the following issues: - Update to version 2.34.3 . - CVE-2021-30887: Fixed logic issue allowing unexpectedly unenforced Content Security Policy when processing maliciously crafted web content. - CVE-2021-30890: Fixed logic issue allowing universal cross site scripti ... oval:org.secpod.oval:def:89045928 This update for webkit2gtk3 fixes the following issues: - Update to version 2.34.3 . - CVE-2021-30887: Fixed logic issue allowing unexpectedly unenforced Content Security Policy when processing maliciously crafted web content. - CVE-2021-30890: Fixed logic issue allowing universal cross site scripti ... oval:org.secpod.oval:def:89045909 This update for webkit2gtk3 fixes the following issues: - Update to version 2.34.3 . - CVE-2021-30887: Fixed logic issue allowing unexpectedly unenforced Content Security Policy when processing maliciously crafted web content. - CVE-2021-30890: Fixed logic issue allowing universal cross site scripti ... oval:org.secpod.oval:def:3300361 SUSE Security Update: Security update for webkit2gtk3 oval:org.secpod.oval:def:1701375 A logic issue was addressed with improved state management. A use after free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.1, iOS 14.2 and iPadOS 14.2, iCloud for Windows 11.5, Safari 14.0.1, tvOS 14.2, iTunes 12.11 for Windows. Processin ... |
