SUSE-SU-2023:4339-1
Vulnerability Summary
Timeline
Description
Security update for webkit2gtk3 This update for webkit2gtk3 fixes the following issues: - CVE-2023-41993: Fixed an issue where processing malicious web content could have lead to arbitrary code execution (bsc#1215661). - CVE-2023-39928: Fixed a use-after-free that could be exploited to execute arbitrary code when visiting a malicious webpage (bsc#1215868). - CVE-2023-41074: Fixed an issue where processing malicious web content could have lead to arbitrary code execution (bsc#1215870). Non-security fixes: - Fixed missing package dependencies (bsc#1215072).
Affected Systems
- suse•webkit2gtk3&distro=SUSE Enterprise Storage 7
< 2.42.1-150200.87.4
- suse•webkit2gtk3&distro=SUSE Enterprise Storage 7.1
< 2.42.1-150200.87.4
- suse•webkit2gtk3&distro=SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS
< 2.42.1-150200.87.4
- suse•webkit2gtk3&distro=SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS
< 2.42.1-150200.87.4
- suse•webkit2gtk3&distro=SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS
< 2.42.1-150200.87.4
- suse•webkit2gtk3&distro=SUSE Linux Enterprise Server 15 SP2-LTSS
< 2.42.1-150200.87.4
- suse•webkit2gtk3&distro=SUSE Linux Enterprise Server 15 SP3-LTSS
< 2.42.1-150200.87.4
- suse•webkit2gtk3&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP2
< 2.42.1-150200.87.4
- suse•webkit2gtk3&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP3
< 2.42.1-150200.87.4
- suse•webkit2gtk3&distro=SUSE Manager Proxy 4.2
< 2.42.1-150200.87.4
- suse•webkit2gtk3&distro=SUSE Manager Server 4.2
< 2.42.1-150200.87.4
References (19)
- https://www.suse.com/support/update/announcement/2023/suse-su-20234339-1/
- https://bugzilla.suse.com/1213379
- https://bugzilla.suse.com/1213581
- https://bugzilla.suse.com/1215072
- https://bugzilla.suse.com/1215661
- https://bugzilla.suse.com/1215866
- https://bugzilla.suse.com/1215867
- https://bugzilla.suse.com/1215868
- https://bugzilla.suse.com/1215869
- https://bugzilla.suse.com/1215870
- https://bugzilla.suse.com/1216483
- https://www.suse.com/security/cve/CVE-2023-32393
- https://www.suse.com/security/cve/CVE-2023-35074
- https://www.suse.com/security/cve/CVE-2023-37450
- https://www.suse.com/security/cve/CVE-2023-39434
- https://www.suse.com/security/cve/CVE-2023-39928
- https://www.suse.com/security/cve/CVE-2023-40451
- https://www.suse.com/security/cve/CVE-2023-41074
- https://www.suse.com/security/cve/CVE-2023-41993