Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

SUSE: 2022:0142-1 Important Security Update for webkit2gtk3

suse
Calendar Grey January 20, 2022
Dist Suse Esm H88
This security bulletin from SUSE announces an update for webkit2gtk3 addressing severe vulnerabilities. Discover further details.
An update that fixes 72 vulnerabilities is now available

Summary

This update for webkit2gtk3 fixes the following issues: - Update to version 2.34.3 (bsc#1194019). - CVE-2021-30887: Fixed logic issue allowing unexpectedly unenforced Content Security Policy when processing maliciously crafted web content. - CVE-2021-30890: Fixed logic issue allowing universal cross site scripting when processing maliciously crafted web content. Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE OpenStack Cloud Crowbar 9: zypper in -t patch SUSE-OpenStack-Cloud-Crowbar-9-2022-142=1 - SUSE OpenStack Cloud Crowbar 8: zypper in -t patch SUSE-OpenStack-Cloud-Crowbar-8-2022-142=1 - SUSE OpenStack Cloud 9:

Topics%20covered

Topics Covered

security advisory software fix malicious content critical issues SUSE Linux important update webkit2gtk3

References

#1194019

Cross- CVE-2018-8518 CVE-2018-8523 CVE-2019-8551

CVE-2019-8558 CVE-2019-8559 CVE-2019-8563

CVE-2019-8674 CVE-2019-8681 CVE-2019-8684

CVE-2019-8687 CVE-2019-8688 CVE-2019-8689

CVE-2019-8690 CVE-2019-8707 CVE-2019-8719

CVE-2019-8726 CVE-2019-8733 CVE-2019-8763

CVE-2019-8765 CVE-2019-8766 CVE-2019-8768

CVE-2019-8782 CVE-2019-8808 CVE-2019-8815

CVE-2019-8821 CVE-2019-8822 CVE-2020-10018

CVE-2020-13753 CVE-2020-27918 CVE-2020-29623

CVE-2020-3885 CVE-2020-3894 CVE-2020-3895

CVE-2020-3897 CVE-2020-3900 CVE-2020-3901

CVE-2020-3902 CVE-2020-9802 CVE-2020-9803

CVE-2020-9805 CVE-2020-9947 CVE-2020-9948

CVE-2020-9951 CVE-2020-9952 CVE-2021-1765

CVE-2021-1788 CVE-2021-1817 CVE-2021-1820

...

Read the Full Advisory

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2022:0142-1
Rating: important

Topics%20covered

Topics Covered

security advisory software fix malicious content critical issues SUSE Linux important update webkit2gtk3

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here