SUSE-SU-2021:1990-1
Vulnerability Summary
Timeline
Description
Security update for webkit2gtk3 This update for webkit2gtk3 fixes the following issues: - Update to version 2.32.1: + Improve handling of Media Capture devices. + Improve WebAudio playback. + Improve video orientation handling. + Improve seeking support for MSE playback. + Improve flush support in EME decryptors. + Fix HTTP status codes for requests done through a custom URI handler. + Fix the Bubblewrap sandbox in certain 32-bit systems. + Fix inconsistencies between the WebKitWebView.is-muted property state and values returned by webkit_web_view_is_playing_audio(). + Fix the build with ENABLE_VIDEO=OFF. + Fix wrong timestamps for long-lived cookies. + Fix UI process crash when failing to load favicons. + Fix several crashes and rendering issues. - Including Security fixes for: CVE-2021-1788, CVE-2021-1844, CVE-2021-1871, CVE-2020-27918, CVE-2020-29623, CVE-2021-1765, CVE-2021-1789, CVE-2021-1799, CVE-2021-1801, CVE-2021-1870, CVE-2020-13558, CVE-2020-13584, CVE-2020-9983, CVE-2020-13543, CVE-2020-9947, CVE-2020-9948, CVE-2020-9951.
Affected Systems
- suse•webkit2gtk3&distro=HPE Helion OpenStack 8
< 2.32.1-2.63.3
- suse•webkit2gtk3&distro=SUSE Linux Enterprise Server 12 SP2-BCL
< 2.32.1-2.63.3
- suse•webkit2gtk3&distro=SUSE Linux Enterprise Server 12 SP3-BCL
< 2.32.1-2.63.3
- suse•webkit2gtk3&distro=SUSE Linux Enterprise Server 12 SP3-LTSS
< 2.32.1-2.63.3
- suse•webkit2gtk3&distro=SUSE Linux Enterprise Server 12 SP4-LTSS
< 2.32.1-2.63.3
- suse•webkit2gtk3&distro=SUSE Linux Enterprise Server 12 SP5
< 2.32.1-2.63.3
- suse•webkit2gtk3&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP3
< 2.32.1-2.63.3
- suse•webkit2gtk3&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP4
< 2.32.1-2.63.3
- suse•webkit2gtk3&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP5
< 2.32.1-2.63.3
- suse•webkit2gtk3&distro=SUSE Linux Enterprise Software Development Kit 12 SP5
< 2.32.1-2.63.3
- suse•webkit2gtk3&distro=SUSE OpenStack Cloud 8
< 2.32.1-2.63.3
- suse•webkit2gtk3&distro=SUSE OpenStack Cloud 9
< 2.32.1-2.63.3
- suse•webkit2gtk3&distro=SUSE OpenStack Cloud Crowbar 8
< 2.32.1-2.63.3
- suse•webkit2gtk3&distro=SUSE OpenStack Cloud Crowbar 9
< 2.32.1-2.63.3
References (24)
- https://www.suse.com/support/update/announcement/2021/suse-su-20211990-1/
- https://bugzilla.suse.com/1177087
- https://bugzilla.suse.com/1179122
- https://bugzilla.suse.com/1179451
- https://bugzilla.suse.com/1182286
- https://bugzilla.suse.com/1184155
- https://bugzilla.suse.com/1184262
- https://www.suse.com/security/cve/CVE-2020-13543
- https://www.suse.com/security/cve/CVE-2020-13558
- https://www.suse.com/security/cve/CVE-2020-13584
- https://www.suse.com/security/cve/CVE-2020-27918
- https://www.suse.com/security/cve/CVE-2020-29623
- https://www.suse.com/security/cve/CVE-2020-9947
- https://www.suse.com/security/cve/CVE-2020-9948
- https://www.suse.com/security/cve/CVE-2020-9951
- https://www.suse.com/security/cve/CVE-2020-9983
- https://www.suse.com/security/cve/CVE-2021-1765
- https://www.suse.com/security/cve/CVE-2021-1788
- https://www.suse.com/security/cve/CVE-2021-1789
- https://www.suse.com/security/cve/CVE-2021-1799
- https://www.suse.com/security/cve/CVE-2021-1801
- https://www.suse.com/security/cve/CVE-2021-1844
- https://www.suse.com/security/cve/CVE-2021-1870
- https://www.suse.com/security/cve/CVE-2021-1871