SUSE-SU-2024:0545-1 -- SLES webkit2gtk3, libwebkit2gtk-4_0-37, typelib-1_0-JavaScriptCore-4_0, typelib-1_0-WebKit2-4_0, libjavascriptcoregtk-4_0-18, typelib-1_0-WebKit2WebExtension-4_0, webkit2gtk-4_0-injected-bundles, libwebkit2gtk3-lang| ID: oval:org.secpod.oval:def:89051496 | Date: (C)2024-04-26 (M)2024-04-26 |
| Class: PATCH | Family: unix |
This update for webkit2gtk3 fixes the following issues: Update to version 2.42.5 : * CVE-2024-23222: Fixed processing maliciously crafted web content that may have led to arbitrary code execution . * CVE-2024-23206: Fixed fingerprint user via maliciously crafted webpages . * CVE-2024-23213: Fixed processing web content that may have led to arbitrary code execution . * CVE-2023-40414: Fixed processing web content that may have led to arbitrary code execution . * CVE-2014-1745: Fixed denial-of-service or potentially disclose memory contents while processing maliciously crafted files . * CVE-2023-42833: Fixed processing web content that may have led to arbitrary code execution .
| Platform: |
| SUSE Linux Enterprise Server 12 SP5 |
| Product: |
| webkit2gtk3 |
| libwebkit2gtk-4_0-37 |
| typelib-1_0-JavaScriptCore-4_0 |
| typelib-1_0-WebKit2-4_0 |
| libjavascriptcoregtk-4_0-18 |
| typelib-1_0-WebKit2WebExtension-4_0 |
| webkit2gtk-4_0-injected-bundles |
| libwebkit2gtk3-lang |
