Alerts This Week
Warning Icon 1 535
Alerts This Week
Warning Icon 1 535

Fedora 28: 2018-118b9abf99 Critical Update for Webkit2gtk3 Security Issues

fedora
Calendar Grey June 16, 2018
Dist Fedora Esm H88
This Ubuntu 20.04 patch addresses crucial gnome-shell vulnerabilities, boosting overall system security and performance.

This update addresses the following vulnerabilities: * [CVE-2018-4190](https://www.cve.org/CVERecord?id=CVE-2018-4190), [CVE-2018-4199](https://www.cve.org/CVERecord?id=CVE-2018...

Summary

WebKitGTK+ is the port of the portable web rendering engine WebKit to the

GTK+ platform.

This package contains WebKit2 based WebKitGTK+ for GTK+ 3.

This update addresses the following vulnerabilities: *

[CVE-2018-4190](https://www.cve.org/CVERecord?id=CVE-2018-4190),

[CVE-2018-4199](https://www.cve.org/CVERecord?id=CVE-2018-4199),

[CVE-2018-4218](https://www.cve.org/CVERecord?id=CVE-2018-4218),

[CVE-2018-4222](https://www.cve.org/CVERecord?id=CVE-2018-4222),

[CVE-2018-4232](https://www.cve.org/CVERecord?id=CVE-2018-4232),

[CVE-2018-4233](https://www.cve.org/CVERecord?id=CVE-2018-4233),

[CVE-2018-4246](https://www.cve.org/CVERecord?id=CVE-2018-4246),

[CVE-2018-11646](https://www.cve.org/CVERecord?id=CVE-2018-11646).

Additional fixes: * Fix installation directory of API documentation. * Disable

Gigacage if mmap fails to allocate in Linux. * Add user agent quirk for paypal

website. * Properly detect compiler flags, needed libs, and fallbacks for usage

of 64-bit atomic operations. * Fix a network process crash when trying to get

cookies of about:blank page. * Fix UI process crash when closing the window

under Wayland. * Fix several crashes and rendering issues.

* Mon Jun 11 2018 Tomas Popela <tpopela@redhat.com> - 2.20.3-1

- Update to 2.20.3

* Wed May 9 2018 Tomas Popela <tpopela@redhat.com> - 2.20.2-1

- Update to 2.20.2

su -c 'dnf upgrade --advisory FEDORA-2018-118b9abf99' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/

List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GY5NYBUZRNA46WQEP2XZCOJFY4BVEJ3X/

Topics%20covered

Topics Covered

security advisory security issue fedora critical software update webkit2gtk3 web content engine

Change Log

References

Update Instructions

Severity
critical
Lowest
Low
Medium
High
Critical

Product: Fedora 28
Version: 2.20.3
Release: 1.fc28
URL: https://www.webkitgtk.org/
Summary: GTK+ Web content engine library

Topics%20covered

Topics Covered

security advisory security issue fedora critical software update webkit2gtk3 web content engine

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here