Early Access — Mondoo Vulnerability Intelligence is currently in preview.

SUSE-SU-2022:2089-1

UNKNOWN

Security update for webkit2gtk3

Published Jun 15, 2022

Modified 3 years ago

Fix available

Details

This update for webkit2gtk3 fixes the following issues:

Update to version 2.36.3 (bsc#1200106)

CVE-2022-30293: Fixed heap-based buffer overflow in WebCore::TextureMapperLayer::setContentsLayer (bsc#1199287).
CVE-2022-26700: Fixed memory corruption issue that may lead to code execution when processing maliciously crafted web content (bsc#1200106).
CVE-2022-26709: Fixed use after free issue that may lead to code execution when processing maliciously crafted web content (bsc#1200106).
CVE-2022-26716: Fixed use after free issue that may lead to code execution when processing maliciously crafted web content (bsc#1200106).
CVE-2022-26717: Fixed memory corruption issue that may lead to code execution when processing maliciously crafted web content (bsc#1200106).
CVE-2022-26719: Fixed memory corruption issue that may lead to code execution when processing maliciously crafted web content (bsc#1200106).

Affected Packages

SUSE:HPE Helion OpenStack 8libjavascriptcoregtk-4_0-18

Fixed in:

2.36.3-2.99.1

SUSE:HPE Helion OpenStack 8libwebkit2gtk-4_0-37

Fixed in:

2.36.3-2.99.1

SUSE:HPE Helion OpenStack 8libwebkit2gtk3-lang

Fixed in:

2.36.3-2.99.1

SUSE:HPE Helion OpenStack 8typelib-1_0-JavaScriptCore-4_0

Fixed in:

2.36.3-2.99.1

SUSE:HPE Helion OpenStack 8typelib-1_0-WebKit2-4_0

Fixed in:

2.36.3-2.99.1

SUSE:HPE Helion OpenStack 8typelib-1_0-WebKit2WebExtension-4_0

Fixed in:

2.36.3-2.99.1

SUSE:HPE Helion OpenStack 8webkit2gtk-4_0-injected-bundles

Fixed in:

2.36.3-2.99.1

SUSE:HPE Helion OpenStack 8webkit2gtk3

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server 12 SP2-BCLlibjavascriptcoregtk-4_0-18

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server 12 SP2-BCLlibwebkit2gtk-4_0-37

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server 12 SP2-BCLlibwebkit2gtk3-lang

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server 12 SP2-BCLtypelib-1_0-JavaScriptCore-4_0

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server 12 SP2-BCLtypelib-1_0-WebKit2-4_0

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server 12 SP2-BCLtypelib-1_0-WebKit2WebExtension-4_0

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server 12 SP2-BCLwebkit2gtk-4_0-injected-bundles

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server 12 SP2-BCLwebkit2gtk3

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server 12 SP2-BCLwebkit2gtk3-devel

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server 12 SP3-BCLlibjavascriptcoregtk-4_0-18

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server 12 SP3-BCLlibwebkit2gtk-4_0-37

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server 12 SP3-BCLtypelib-1_0-JavaScriptCore-4_0

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server 12 SP3-BCLtypelib-1_0-WebKit2-4_0

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server 12 SP3-BCLwebkit2gtk-4_0-injected-bundles

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server 12 SP3-BCLwebkit2gtk3

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server 12 SP3-LTSSlibjavascriptcoregtk-4_0-18

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server 12 SP3-LTSSlibwebkit2gtk-4_0-37

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server 12 SP3-LTSSlibwebkit2gtk3-lang

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server 12 SP3-LTSStypelib-1_0-JavaScriptCore-4_0

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server 12 SP3-LTSStypelib-1_0-WebKit2-4_0

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server 12 SP3-LTSStypelib-1_0-WebKit2WebExtension-4_0

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server 12 SP3-LTSSwebkit2gtk-4_0-injected-bundles

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server 12 SP3-LTSSwebkit2gtk3

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server 12 SP4-LTSSlibjavascriptcoregtk-4_0-18

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server 12 SP4-LTSSlibwebkit2gtk-4_0-37

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server 12 SP4-LTSSlibwebkit2gtk3-lang

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server 12 SP4-LTSStypelib-1_0-JavaScriptCore-4_0

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server 12 SP4-LTSStypelib-1_0-WebKit2-4_0

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server 12 SP4-LTSStypelib-1_0-WebKit2WebExtension-4_0

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server 12 SP4-LTSSwebkit2gtk-4_0-injected-bundles

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server 12 SP4-LTSSwebkit2gtk3

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server 12 SP5libjavascriptcoregtk-4_0-18

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server 12 SP5libwebkit2gtk-4_0-37

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server 12 SP5libwebkit2gtk3-lang

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server 12 SP5typelib-1_0-JavaScriptCore-4_0

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server 12 SP5typelib-1_0-WebKit2-4_0

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server 12 SP5typelib-1_0-WebKit2WebExtension-4_0

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server 12 SP5webkit2gtk-4_0-injected-bundles

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server 12 SP5webkit2gtk3

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server for SAP Applications 12 SP3libjavascriptcoregtk-4_0-18

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server for SAP Applications 12 SP3libwebkit2gtk-4_0-37

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server for SAP Applications 12 SP3libwebkit2gtk3-lang

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server for SAP Applications 12 SP3typelib-1_0-JavaScriptCore-4_0

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server for SAP Applications 12 SP3typelib-1_0-WebKit2-4_0

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server for SAP Applications 12 SP3typelib-1_0-WebKit2WebExtension-4_0

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server for SAP Applications 12 SP3webkit2gtk-4_0-injected-bundles

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server for SAP Applications 12 SP3webkit2gtk3

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server for SAP Applications 12 SP4libjavascriptcoregtk-4_0-18

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server for SAP Applications 12 SP4libwebkit2gtk-4_0-37

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server for SAP Applications 12 SP4libwebkit2gtk3-lang

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server for SAP Applications 12 SP4typelib-1_0-JavaScriptCore-4_0

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server for SAP Applications 12 SP4typelib-1_0-WebKit2-4_0

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server for SAP Applications 12 SP4typelib-1_0-WebKit2WebExtension-4_0

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server for SAP Applications 12 SP4webkit2gtk-4_0-injected-bundles

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server for SAP Applications 12 SP4webkit2gtk3

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server for SAP Applications 12 SP5libjavascriptcoregtk-4_0-18

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server for SAP Applications 12 SP5libwebkit2gtk-4_0-37

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server for SAP Applications 12 SP5libwebkit2gtk3-lang

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server for SAP Applications 12 SP5typelib-1_0-JavaScriptCore-4_0

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server for SAP Applications 12 SP5typelib-1_0-WebKit2-4_0

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server for SAP Applications 12 SP5typelib-1_0-WebKit2WebExtension-4_0

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server for SAP Applications 12 SP5webkit2gtk-4_0-injected-bundles

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Server for SAP Applications 12 SP5webkit2gtk3

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Software Development Kit 12 SP5typelib-1_0-WebKit2WebExtension-4_0

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Software Development Kit 12 SP5webkit2gtk3

Fixed in:

2.36.3-2.99.1

SUSE:Linux Enterprise Software Development Kit 12 SP5webkit2gtk3-devel

Fixed in:

2.36.3-2.99.1

SUSE:OpenStack Cloud 8libjavascriptcoregtk-4_0-18

Fixed in:

2.36.3-2.99.1

SUSE:OpenStack Cloud 8libwebkit2gtk-4_0-37

Fixed in:

2.36.3-2.99.1

SUSE:OpenStack Cloud 8libwebkit2gtk3-lang

Fixed in:

2.36.3-2.99.1

SUSE:OpenStack Cloud 8typelib-1_0-JavaScriptCore-4_0

Fixed in:

2.36.3-2.99.1

SUSE:OpenStack Cloud 8typelib-1_0-WebKit2-4_0

Fixed in:

2.36.3-2.99.1

SUSE:OpenStack Cloud 8typelib-1_0-WebKit2WebExtension-4_0

Fixed in:

2.36.3-2.99.1

SUSE:OpenStack Cloud 8webkit2gtk-4_0-injected-bundles

Fixed in:

2.36.3-2.99.1

SUSE:OpenStack Cloud 8webkit2gtk3

Fixed in:

2.36.3-2.99.1

SUSE:OpenStack Cloud 9libjavascriptcoregtk-4_0-18

Fixed in:

2.36.3-2.99.1

SUSE:OpenStack Cloud 9libwebkit2gtk-4_0-37

Fixed in:

2.36.3-2.99.1

SUSE:OpenStack Cloud 9libwebkit2gtk3-lang

Fixed in:

2.36.3-2.99.1

SUSE:OpenStack Cloud 9typelib-1_0-JavaScriptCore-4_0

Fixed in:

2.36.3-2.99.1

SUSE:OpenStack Cloud 9typelib-1_0-WebKit2-4_0

Fixed in:

2.36.3-2.99.1

SUSE:OpenStack Cloud 9typelib-1_0-WebKit2WebExtension-4_0

Fixed in:

2.36.3-2.99.1

SUSE:OpenStack Cloud 9webkit2gtk-4_0-injected-bundles

Fixed in:

2.36.3-2.99.1

SUSE:OpenStack Cloud 9webkit2gtk3

Fixed in:

2.36.3-2.99.1

SUSE:OpenStack Cloud Crowbar 8libjavascriptcoregtk-4_0-18

Fixed in:

2.36.3-2.99.1

SUSE:OpenStack Cloud Crowbar 8libwebkit2gtk-4_0-37

Fixed in:

2.36.3-2.99.1

SUSE:OpenStack Cloud Crowbar 8libwebkit2gtk3-lang

Fixed in:

2.36.3-2.99.1

SUSE:OpenStack Cloud Crowbar 8typelib-1_0-JavaScriptCore-4_0

Fixed in:

2.36.3-2.99.1

SUSE:OpenStack Cloud Crowbar 8typelib-1_0-WebKit2-4_0

Fixed in:

2.36.3-2.99.1

SUSE:OpenStack Cloud Crowbar 8typelib-1_0-WebKit2WebExtension-4_0

Fixed in:

2.36.3-2.99.1

SUSE:OpenStack Cloud Crowbar 8webkit2gtk-4_0-injected-bundles

Fixed in:

2.36.3-2.99.1

SUSE:OpenStack Cloud Crowbar 8webkit2gtk3

Fixed in:

2.36.3-2.99.1

SUSE:OpenStack Cloud Crowbar 9libjavascriptcoregtk-4_0-18

Fixed in:

2.36.3-2.99.1

SUSE:OpenStack Cloud Crowbar 9libwebkit2gtk-4_0-37

Fixed in:

2.36.3-2.99.1

SUSE:OpenStack Cloud Crowbar 9libwebkit2gtk3-lang

Fixed in:

2.36.3-2.99.1

SUSE:OpenStack Cloud Crowbar 9typelib-1_0-JavaScriptCore-4_0

Fixed in:

2.36.3-2.99.1

SUSE:OpenStack Cloud Crowbar 9typelib-1_0-WebKit2-4_0

Fixed in:

2.36.3-2.99.1

SUSE:OpenStack Cloud Crowbar 9typelib-1_0-WebKit2WebExtension-4_0

Fixed in:

2.36.3-2.99.1

SUSE:OpenStack Cloud Crowbar 9webkit2gtk-4_0-injected-bundles

Fixed in:

2.36.3-2.99.1

SUSE:OpenStack Cloud Crowbar 9webkit2gtk3

Fixed in:

2.36.3-2.99.1

References

REPORThttps://bugzilla.suse.com/1199287 REPORThttps://bugzilla.suse.com/1200106 WEBhttps://www.suse.com/security/cve/CVE-2022-26700 WEBhttps://www.suse.com/security/cve/CVE-2022-26709 WEBhttps://www.suse.com/security/cve/CVE-2022-26716 WEBhttps://www.suse.com/security/cve/CVE-2022-26717 WEBhttps://www.suse.com/security/cve/CVE-2022-26719 WEBhttps://www.suse.com/security/cve/CVE-2022-30293 ADVISORYhttps://www.suse.com/support/update/announcement/2022/suse-su-20222089-1/

SUSE-SU-2022:2089-1 | Mondoo Vulnerability Intelligence

SUSE-SU-2022:2089-1

Details

Affected Packages

References

Upstream

Related

Ecosystems

Timeline