Overview

File _patchinfo of Package patchinfo.25643

<patchinfo incident="25643">
  <issue tracker="bnc" id="1202169">libwebkit2gtk3: Eclipse crashes webkit_web_context_get_default()</issue>
  <issue tracker="bnc" id="1202807">VUL-0: CVE-2022-32893: webkit2gtk3: processing maliciously crafted web content may lead to arbitrary code execution (WSA-2022-0008)</issue>
  <issue tracker="cve" id="2022-32893"/>
  <packager>mgorse</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for webkit2gtk3</summary>
  <description>This update for webkit2gtk3 fixes the following issues:

- Updated to version 2.36.7 (bsc#1202807):
  - CVE-2022-32893: Fixed an issue that would be triggered when
    processing malicious web content and that could lead to arbitrary
    code execution.
  - Fixed several crashes and rendering issues.

- Updated to version 2.36.6:
  - Fixed handling of touchpad scrolling on GTK4 builds
  - Fixed WebKitGTK not allowing to be used from non-main threads
    (bsc#1202169).
  - Fixed several crashes and rendering issues
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places