Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
Please login to access the resource
openSUSE:Step:15-SP2
patchinfo.9953
_patchinfo
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File _patchinfo of Package patchinfo.9953
<patchinfo incident="9953"> <issue tracker="bnc" id="1119553">VUL-0: CVE-2018-4437: webkit2gtk3: multiple memory corruption issues were addressed with improved memory handling (WSA-2018-0009)</issue> <issue tracker="bnc" id="1119554">VUL-0: CVE-2018-4438: webkit2gtk3: logic issue existed resulting in memory corruption (WSA-2018-0009)</issue> <issue tracker="bnc" id="1119555">VUL-0: CVE-2018-4441: webkit2gtk3: memory corruption issue was addressed with improved memory handling (WSA-2018-0009)</issue> <issue tracker="bnc" id="1119556">VUL-0: CVE-2018-4442: webkit2gtk3: memory corruption issue was addressed with improved memory handling (WSA-2018-0009)</issue> <issue tracker="bnc" id="1119557">VUL-0: CVE-2018-4443: webkit2gtk3: memory corruption issue was addressed with improved memory handling (WSA-2018-0009)</issue> <issue tracker="bnc" id="1119558">VUL-0: CVE-2018-4464: webkit2gtk3: multiple memory corruption issues were addressed with improved memory handling (WSA-2018-0009)</issue> <issue tracker="cve" id="2018-4437"/> <issue tracker="cve" id="2018-4438"/> <issue tracker="cve" id="2018-4441"/> <issue tracker="cve" id="2018-4442"/> <issue tracker="cve" id="2018-4443"/> <issue tracker="cve" id="2018-4464"/> <issue tracker="cve" id="2019-6212"/> <issue tracker="cve" id="2019-6215"/> <issue tracker="cve" id="2019-6216"/> <issue tracker="cve" id="2019-6217"/> <issue tracker="cve" id="2019-6226"/> <issue tracker="cve" id="2019-6227"/> <issue tracker="cve" id="2019-6229"/> <issue tracker="cve" id="2019-6233"/> <issue tracker="cve" id="2019-6234"/> <category>security</category> <rating>moderate</rating> <packager>mgorse</packager> <description>This update for webkit2gtk3 to version 2.22.6 fixes the following issues (boo#1124937 boo#1119558): Security vulnerabilities fixed: - CVE-2018-4437: Processing maliciously crafted web content may lead to arbitrary code execution. Multiple memory corruption issues were addressed with improved memory handling. (boo#1119553) - CVE-2018-4438: Processing maliciously crafted web content may lead to arbitrary code execution. A logic issue existed resulting in memory corruption. This was addressed with improved state management. (boo#1119554) - CVE-2018-4441: Processing maliciously crafted web content may lead to arbitrary code execution. A memory corruption issue was addressed with improved memory handling. (boo#1119555) - CVE-2018-4442: Processing maliciously crafted web content may lead to arbitrary code execution. A memory corruption issue was addressed with improved memory handling. (boo#1119556) - CVE-2018-4443: Processing maliciously crafted web content may lead to arbitrary code execution. A memory corruption issue was addressed with improved memory handling. (boo#1119557) - CVE-2018-4464: Processing maliciously crafted web content may lead to arbitrary code execution. Multiple memory corruption issues were addressed with improved memory handling. (boo#1119558) - CVE-2019-6212: Processing maliciously crafted web content may lead to arbitrary code execution. Multiple memory corruption issues were addressed with improved memory handling. - CVE-2019-6215: Processing maliciously crafted web content may lead to arbitrary code execution. A type confusion issue was addressed with improved memory handling. - CVE-2019-6216: Processing maliciously crafted web content may lead to arbitrary code execution. Multiple memory corruption issues were addressed with improved memory handling. - CVE-2019-6217: Processing maliciously crafted web content may lead to arbitrary code execution. Multiple memory corruption issues were addressed with improved memory handling. - CVE-2019-6226: Processing maliciously crafted web content may lead to arbitrary code execution. Multiple memory corruption issues were addressed with improved memory handling. - CVE-2019-6227: Processing maliciously crafted web content may lead to arbitrary code execution. A memory corruption issue was addressed with improved memory handling. - CVE-2019-6229: Processing maliciously crafted web content may lead to universal cross site scripting. A logic issue was addressed with improved validation. - CVE-2019-6233: Processing maliciously crafted web content may lead to arbitrary code execution. A memory corruption issue was addressed with improved memory handling. - CVE-2019-6234: Processing maliciously crafted web content may lead to arbitrary code execution. A memory corruption issue was addressed with improved memory handling. Other bug fixes and changes: - Make kinetic scrolling slow down smoothly when reaching the ends of pages, instead of abruptly, to better match the GTK+ behaviour. - Fix Web inspector magnifier under Wayland. - Fix garbled rendering of some websites (e.g. YouTube) while scrolling under X11. - Fix several crashes, race conditions, and rendering issues. For a detailed list of changes, please refer to: - https://webkitgtk.org/security/WSA-2019-0001.html - https://webkitgtk.org/2019/02/09/webkitgtk2.22.6-released.html - https://webkitgtk.org/security/WSA-2018-0009.html - https://webkitgtk.org/2018/12/13/webkitgtk2.22.5-released.html </description> <summary>Security update for webkit2gtk3</summary> </patchinfo>
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor