[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2024:1269-1":6},{"stargazers_count":4,"fetched_at":5},5,"2026-04-08T03:11:47.468Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":30,"duplicates":31,"related":32,"reserved_at":9,"published_at":41,"modified_at":42,"state":9,"summary":43,"references_raw":45,"kevs":90,"epss":9,"epss_history":91,"metrics":92,"affected":93},"SUSE-SU-2024:1269-1","Security update for webkit2gtk3\n\nThis update for webkit2gtk3 fixes the following issues: \n\n- CVE-2024-23252: Fixed denial of service via crafted web content (bsc#1222010).\n- CVE-2024-23254: Fixed possible audio data exilftration cross-origin via malicious website (bsc#1222010).\n- CVE-2024-23263: Fixed lack of Content Security Policy enforcing via malicious crafted web content (bsc#1222010).\n- CVE-2024-23280: Fixed possible user fingeprint via malicious crafted web content (bsc#1222010).\n- CVE-2024-23284: Fixed lack of Content Security Policy enforcing via malicious crafted web content (bsc#1222010).\n- CVE-2023-42950: Fixed arbitrary code execution via crafted web content (bsc#1222010).\n- CVE-2023-42956: Fixed denial of service via crafted web content (bsc#1222010). \n- CVE-2023-42843: Fixed address bar spoofing via malicious website (bsc#1222010).\n\nOther fixes:\n\n- Update to version 2.44.0 (bsc#1222010): \n + Make the DOM accessibility tree reachable from UI process with \n GTK4. \n + Removed the X11 and WPE renderers in favor of DMA-BUF.\n + Improved vblank synchronization when rendering. \n + Removed key event reinjection in GTK4 to make keyboard \n shortcuts work in web sites. \n + Fix gamepads detection by correctly handling focused window in \n GTK4. \n",null,[],[],[],[14,16,18,20,22,24,26,28],{"_key":15},"CVE-2023-42843",{"_key":17},"CVE-2023-42950",{"_key":19},"CVE-2023-42956",{"_key":21},"CVE-2024-23252",{"_key":23},"CVE-2024-23254",{"_key":25},"CVE-2024-23263",{"_key":27},"CVE-2024-23280",{"_key":29},"CVE-2024-23284",[],[],[33,34,35,36,37,38,39,40],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},"2024-04-12T13:34:17Z","2026-02-04T03:57:30.355416Z",{"cisa_kev":44,"cisa_ransomware":44,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[46,52,57,62,66,70,74,78,82,86],{"url":47,"sources":48,"tags":50},"https://www.suse.com/support/update/announcement/2024/suse-su-20241269-1/",[49],"osv_suse",[51],"Advisory",{"url":53,"sources":54,"tags":55},"https://bugzilla.suse.com/1222010",[49],[56],"REPORT",{"url":58,"sources":59,"tags":60},"https://www.suse.com/security/cve/CVE-2023-42843",[49],[61],"WEB",{"url":63,"sources":64,"tags":65},"https://www.suse.com/security/cve/CVE-2023-42950",[49],[61],{"url":67,"sources":68,"tags":69},"https://www.suse.com/security/cve/CVE-2023-42956",[49],[61],{"url":71,"sources":72,"tags":73},"https://www.suse.com/security/cve/CVE-2024-23252",[49],[61],{"url":75,"sources":76,"tags":77},"https://www.suse.com/security/cve/CVE-2024-23254",[49],[61],{"url":79,"sources":80,"tags":81},"https://www.suse.com/security/cve/CVE-2024-23263",[49],[61],{"url":83,"sources":84,"tags":85},"https://www.suse.com/security/cve/CVE-2024-23280",[49],[61],{"url":87,"sources":88,"tags":89},"https://www.suse.com/security/cve/CVE-2024-23284",[49],[61],[],[],[],[94,107,111,115,119,123,127],{"ecosystem":95,"name":96,"vendor":97,"product":98,"cpe_part":9,"purl_type":99,"purl_namespace":97,"purl_name":98,"source":9,"versions":100},"SUSE Linux Enterprise","webkit2gtk3","suse","webkit2gtk3&distro=SUSE Enterprise Storage 7.1","rpm",[101],{"version":102,"is_range":103,"range_type":104,"version_start":9,"version_start_type":9,"version_end":105,"version_end_type":106,"fixed_in":9},"lt2_44_0_150200_107_1",true,"ecosystem","2.44.0-150200.107.1","excluding",{"ecosystem":95,"name":96,"vendor":97,"product":108,"cpe_part":9,"purl_type":99,"purl_namespace":97,"purl_name":108,"source":9,"versions":109},"webkit2gtk3&distro=SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",[110],{"version":102,"is_range":103,"range_type":104,"version_start":9,"version_start_type":9,"version_end":105,"version_end_type":106,"fixed_in":9},{"ecosystem":95,"name":96,"vendor":97,"product":112,"cpe_part":9,"purl_type":99,"purl_namespace":97,"purl_name":112,"source":9,"versions":113},"webkit2gtk3&distro=SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",[114],{"version":102,"is_range":103,"range_type":104,"version_start":9,"version_start_type":9,"version_end":105,"version_end_type":106,"fixed_in":9},{"ecosystem":95,"name":96,"vendor":97,"product":116,"cpe_part":9,"purl_type":99,"purl_namespace":97,"purl_name":116,"source":9,"versions":117},"webkit2gtk3&distro=SUSE Linux Enterprise Server 15 SP2-LTSS",[118],{"version":102,"is_range":103,"range_type":104,"version_start":9,"version_start_type":9,"version_end":105,"version_end_type":106,"fixed_in":9},{"ecosystem":95,"name":96,"vendor":97,"product":120,"cpe_part":9,"purl_type":99,"purl_namespace":97,"purl_name":120,"source":9,"versions":121},"webkit2gtk3&distro=SUSE Linux Enterprise Server 15 SP3-LTSS",[122],{"version":102,"is_range":103,"range_type":104,"version_start":9,"version_start_type":9,"version_end":105,"version_end_type":106,"fixed_in":9},{"ecosystem":95,"name":96,"vendor":97,"product":124,"cpe_part":9,"purl_type":99,"purl_namespace":97,"purl_name":124,"source":9,"versions":125},"webkit2gtk3&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP2",[126],{"version":102,"is_range":103,"range_type":104,"version_start":9,"version_start_type":9,"version_end":105,"version_end_type":106,"fixed_in":9},{"ecosystem":95,"name":96,"vendor":97,"product":128,"cpe_part":9,"purl_type":99,"purl_namespace":97,"purl_name":128,"source":9,"versions":129},"webkit2gtk3&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP3",[130],{"version":102,"is_range":103,"range_type":104,"version_start":9,"version_start_type":9,"version_end":105,"version_end_type":106,"fixed_in":9}]