SUSE-SU-2022:2072-1 -- SLES webkit2gtk3, libjavascriptcoregtk, libwebkit2gtk-4_0-37, webkit2gtk-4_0-injected-bundles, libwebkit2gtk3-lang, typelib-1_0-JavaScriptCore-4_0, typelib-1_0-WebKit2-4_0, typelib-1_0-WebKit2WebExtension-4_0ID: oval:org.secpod.oval:def:89047359 | Date: (C)2022-11-04 (M)2023-12-11 |
Class: PATCH | Family: unix |
This update for webkit2gtk3 fixes the following issues: Update to version 2.36.3 - CVE-2022-30293: Fixed heap-based buffer overflow in WebCore::TextureMapperLayer::setContentsLayer . - CVE-2022-26700: Fixed memory corruption issue that may lead to code execution when processing maliciously crafted web content . - CVE-2022-26709: Fixed use after free issue that may lead to code execution when processing maliciously crafted web content . - CVE-2022-26716: Fixed use after free issue that may lead to code execution when processing maliciously crafted web content . - CVE-2022-26717: Fixed memory corruption issue that may lead to code execution when processing maliciously crafted web content . - CVE-2022-26719: Fixed memory corruption issue that may lead to code execution when processing maliciously crafted web content .
Platform: |
SUSE Linux Enterprise Server 15 SP3 |
SUSE Linux Enterprise Desktop 15 SP3 |
Product: |
webkit2gtk3 |
libjavascriptcoregtk |
libwebkit2gtk-4_0-37 |
webkit2gtk-4_0-injected-bundles |
libwebkit2gtk3-lang |
typelib-1_0-JavaScriptCore-4_0 |
typelib-1_0-WebKit2-4_0 |
typelib-1_0-WebKit2WebExtension-4_0 |