Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

SUSE: 2024:3109-1 Important: Webkit2gtk3 Security Fixes

suse
Calendar Grey September 3, 2024
Dist Suse Esm H88
Stay informed about critical updates for the WebKit2GTK3 package in SUSE, which address vulnerabilities threatening system integrity and user data
* bsc#1228696 * bsc#1228697 * bsc#1228698 Cross-References:

Summary

## This update for webkit2gtk3 fixes the following issues: Update to version 2.44.3 (bsc#1228696 bsc#1228697 bsc#1228698): * Fix web process cache suspend/resume when sandbox is enabled. * Fix accelerated images dissapearing after scrolling. * Fix video flickering with DMA-BUF sink. * Fix pointer lock on X11. * Fix movement delta on mouse events in GTK3. * Undeprecate console message API and make it available in 2022 API. * Fix several crashes and rendering issues. * Security fixes: CVE-2024-40776, CVE-2024-40779, CVE-2024-40780, CVE-2024-40782, CVE-2024-40785, CVE-2024-40789, CVE-2024-40794, CVE-2024-4558. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

Topics%20covered

Topics Covered

security advisory security issue software update important SUSE update instruction webkit2gtk3

References

* bsc#1228696

* bsc#1228697

* bsc#1228698

Cross-

* CVE-2024-40776

* CVE-2024-40779

* CVE-2024-40780

* CVE-2024-40782

* CVE-2024-40785

* CVE-2024-40789

* CVE-2024-40794

* CVE-2024-4558

CVSS scores:

* CVE-2024-40776 ( SUSE ): 8.9

CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H

* CVE-2024-40776 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H

* CVE-2024-40776 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

* CVE-2024-40779 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

* CVE-2024-40779 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

* CVE-2024-40780 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

* CVE-2024-40780 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2024:3109-1
Rating: important

Topics%20covered

Topics Covered

security advisory security issue software update important SUSE update instruction webkit2gtk3

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here