SUSE-SU-2021:1430-1
Vulnerability Summary
Timeline
Description
Security update for webkit2gtk3 This update for webkit2gtk3 fixes the following issues: - Update to version 2.32.0 (bsc#1184155): * Fix the authentication request port when URL omits the port. * Fix iframe scrolling when main frame is scrolled in async * scrolling mode. * Stop using g_memdup. * Show a warning message when overriding signal handler for * threading suspension. * Fix the build on RISC-V with GCC 11. * Fix several crashes and rendering issues. * Security fixes: CVE-2021-1788, CVE-2021-1844, CVE-2021-1871 - Update in version 2.30.6 (bsc#1184262): * Update user agent quirks again for Google Docs and Google Drive. * Fix several crashes and rendering issues. * Security fixes: CVE-2020-27918, CVE-2020-29623, CVE-2021-1765 CVE-2021-1789, CVE-2021-1799, CVE-2021-1801, CVE-2021-1870. - Update _constraints for armv6/armv7 (bsc#1182719) - restore NPAPI plugin support which was removed in 2.32.0
Affected Systems
- suse•webkit2gtk3&distro=SUSE Linux Enterprise Module for Basesystem 15 SP2
< 2.32.0-3.15.1
- suse•webkit2gtk3&distro=SUSE Linux Enterprise Module for Desktop Applications 15 SP2
< 2.32.0-3.15.1
References (14)
- https://www.suse.com/support/update/announcement/2021/suse-su-20211430-1/
- https://bugzilla.suse.com/1182719
- https://bugzilla.suse.com/1184155
- https://bugzilla.suse.com/1184262
- https://www.suse.com/security/cve/CVE-2020-27918
- https://www.suse.com/security/cve/CVE-2020-29623
- https://www.suse.com/security/cve/CVE-2021-1765
- https://www.suse.com/security/cve/CVE-2021-1788
- https://www.suse.com/security/cve/CVE-2021-1789
- https://www.suse.com/security/cve/CVE-2021-1799
- https://www.suse.com/security/cve/CVE-2021-1801
- https://www.suse.com/security/cve/CVE-2021-1844
- https://www.suse.com/security/cve/CVE-2021-1870
- https://www.suse.com/security/cve/CVE-2021-1871