Fedora 26: 2017-4d5618a962 Critical: webkitgtk4 Security Risk
fedora
November 28, 2017
This update addresses the following vulnerabilities: * [CVE-2017-13798](https://www.cve.org/CVERecord?id=CVE-2017-13798), [CVE-2017-13788](https://www.cve.org/CVERecord?id=CVE-2017...
Summary
WebKitGTK+ is the port of the portable web rendering engine WebKit to the
GTK+ platform.
This package contains WebKitGTK+ for GTK+ 3.
This update addresses the following vulnerabilities: *
[CVE-2017-13798](https://www.cve.org/CVERecord?id=CVE-2017-13798),
[CVE-2017-13788](https://www.cve.org/CVERecord?id=CVE-2017-13788),
[CVE-2017-13803](https://www.cve.org/CVERecord?id=CVE-2017-13803)
Additional fixes: * Improve calculation of font metrics to prevent scrollbars
from being shown unnecessarily in some cases. * Fix handling of null
capabilities in WebDriver implementation.
su -c 'dnf upgrade webkitgtk4' at the command line.
For more information, refer to the dnf documentation available at
https://dnf.readthedocs.io/en/latest/command_ref.html
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/security/
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Topics Covered
Change Log
References
Update Instructions
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Product: Fedora 26
Version: 2.18.3
Release: 1.fc26
Summary: GTK+ Web content engine library
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!