SUSE-SU-2023:4209-1

Advisory lineage Upstream: 8 Downstream: 0

Upstream

CVE-2023-32393 CVE-2023-35074 CVE-2023-37450 CVE-2023-39434 CVE-2023-39928 CVE-2023-40451

Published: 26 Oct 2023, 08:24

Last modified:04 Feb 2026, 04:18

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

26 Oct 2023, 08:24

Published

Vulnerability first disclosed

04 Feb 2026, 04:18

Last Modified

Vulnerability information updated

Description

Security update for webkit2gtk3 This update for webkit2gtk3 fixes the following issues: - CVE-2023-41993: Fixed an issue where processing malicious web content could have lead to arbitrary code execution (bsc#1215661). - CVE-2023-39928: Fixed a use-after-free that could be exploited to execute arbitrary code when visiting a malicious webpage (bsc#1215868). - CVE-2023-41074: Fixed an issue where processing malicious web content could have lead to arbitrary code execution (bsc#1215870). Non-security fixes: - Fixed missing package dependencies (bsc#1215072).

Affected Systems

suse•webkit2gtk3&distro=SUSE Linux Enterprise Server 12 SP5
< 2.42.1-2.155.1
suse•webkit2gtk3&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP5
< 2.42.1-2.155.1
suse•webkit2gtk3&distro=SUSE Linux Enterprise Software Development Kit 12 SP5
< 2.42.1-2.155.1
suse•webkit2gtk3&distro=SUSE Linux Enterprise Workstation Extension 12 SP5
< 2.42.1-2.155.1

SUSE-SU-2023:4209-1

Vulnerability Summary

Timeline

Description

Affected Systems

References (20)