[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2024:1270-1":6},{"stargazers_count":4,"fetched_at":5},5,"2026-04-08T08:11:26.341Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":30,"duplicates":31,"related":32,"reserved_at":9,"published_at":41,"modified_at":42,"state":9,"summary":43,"references_raw":45,"kevs":91,"epss":9,"epss_history":92,"metrics":93,"affected":94},"SUSE-SU-2024:1270-1","Security update for webkit2gtk3\n\nThis update for webkit2gtk3 fixes the following issues:                                                                                            \n\n- CVE-2024-23252: Fixed denial of service via crafted web content (bsc#1222010).\n- CVE-2024-23254: Fixed possible audio data exilftration cross-origin via malicious website (bsc#1222010).\n- CVE-2024-23263: Fixed lack of Content Security Policy enforcing via malicious crafted web content (bsc#1222010).\n- CVE-2024-23280: Fixed possible user fingeprint via malicious crafted web content (bsc#1222010).\n- CVE-2024-23284: Fixed lack of Content Security Policy enforcing via malicious crafted web content (bsc#1222010).\n- CVE-2023-42950: Fixed arbitrary code execution via crafted web content (bsc#1222010).\n- CVE-2023-42956: Fixed denial of service via crafted web content (bsc#1222010).                                                                   \n- CVE-2023-42843: Fixed address bar spoofing via malicious website (bsc#1222010).\n\nOther fixes:\n\n- Update to version 2.44.0 (bsc#1222010):                                                                                                                         \n  + Make the DOM accessibility tree reachable from UI process with                                                                     \n    GTK4.                                                                        \n  + Removed the X11 and WPE renderers in favor of DMA-BUF.\n  + Improved vblank synchronization when rendering.       \n  + Removed key event reinjection in GTK4 to make keyboard                                                                             \n    shortcuts work in web sites.                                                 \n  + Fix gamepads detection by correctly handling focused window in                                                                     \n    GTK4.                                                                                                                                          \n",null,[],[],[],[14,16,18,20,22,24,26,28],{"_key":15},"CVE-2023-42843",{"_key":17},"CVE-2023-42950",{"_key":19},"CVE-2023-42956",{"_key":21},"CVE-2024-23252",{"_key":23},"CVE-2024-23254",{"_key":25},"CVE-2024-23263",{"_key":27},"CVE-2024-23280",{"_key":29},"CVE-2024-23284",[],[],[33,34,35,36,37,38,39,40],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},"2024-04-12T13:35:02Z","2026-02-04T03:27:11.309547Z",{"cisa_kev":44,"cisa_ransomware":44,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[46,53,58,63,67,71,75,79,83,87],{"url":47,"sources":48,"tags":51},"https://www.suse.com/support/update/announcement/2024/suse-su-20241270-1/",[49,50],"osv_suse","osv_opensuse",[52],"Advisory",{"url":54,"sources":55,"tags":56},"https://bugzilla.suse.com/1222010",[49,50],[57],"REPORT",{"url":59,"sources":60,"tags":61},"https://www.suse.com/security/cve/CVE-2023-42843",[49,50],[62],"WEB",{"url":64,"sources":65,"tags":66},"https://www.suse.com/security/cve/CVE-2023-42950",[49,50],[62],{"url":68,"sources":69,"tags":70},"https://www.suse.com/security/cve/CVE-2023-42956",[49,50],[62],{"url":72,"sources":73,"tags":74},"https://www.suse.com/security/cve/CVE-2024-23252",[49,50],[62],{"url":76,"sources":77,"tags":78},"https://www.suse.com/security/cve/CVE-2024-23254",[49,50],[62],{"url":80,"sources":81,"tags":82},"https://www.suse.com/security/cve/CVE-2024-23263",[49,50],[62],{"url":84,"sources":85,"tags":86},"https://www.suse.com/security/cve/CVE-2024-23280",[49,50],[62],{"url":88,"sources":89,"tags":90},"https://www.suse.com/security/cve/CVE-2024-23284",[49,50],[62],[],[],[],[95,108,113,118,124,128,132,136,140,144,148,152,156,160,164,168,172,176,180,184],{"ecosystem":96,"name":97,"vendor":98,"product":99,"cpe_part":9,"purl_type":100,"purl_namespace":98,"purl_name":99,"source":9,"versions":101},"openSUSE","webkit2gtk3-soup2","opensuse","webkit2gtk3-soup2&distro=openSUSE Leap 15.5","rpm",[102],{"version":103,"is_range":104,"range_type":105,"version_start":9,"version_start_type":9,"version_end":106,"version_end_type":107,"fixed_in":9},"lt2_44_0_150400_4_78_1",true,"ecosystem","2.44.0-150400.4.78.1","excluding",{"ecosystem":96,"name":109,"vendor":98,"product":110,"cpe_part":9,"purl_type":100,"purl_namespace":98,"purl_name":110,"source":9,"versions":111},"webkit2gtk3","webkit2gtk3&distro=openSUSE Leap 15.5",[112],{"version":103,"is_range":104,"range_type":105,"version_start":9,"version_start_type":9,"version_end":106,"version_end_type":107,"fixed_in":9},{"ecosystem":96,"name":114,"vendor":98,"product":115,"cpe_part":9,"purl_type":100,"purl_namespace":98,"purl_name":115,"source":9,"versions":116},"webkit2gtk4","webkit2gtk4&distro=openSUSE Leap 15.5",[117],{"version":103,"is_range":104,"range_type":105,"version_start":9,"version_start_type":9,"version_end":106,"version_end_type":107,"fixed_in":9},{"ecosystem":119,"name":97,"vendor":120,"product":121,"cpe_part":9,"purl_type":100,"purl_namespace":120,"purl_name":121,"source":9,"versions":122},"SUSE Linux Enterprise","suse","webkit2gtk3-soup2&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",[123],{"version":103,"is_range":104,"range_type":105,"version_start":9,"version_start_type":9,"version_end":106,"version_end_type":107,"fixed_in":9},{"ecosystem":119,"name":97,"vendor":120,"product":125,"cpe_part":9,"purl_type":100,"purl_namespace":120,"purl_name":125,"source":9,"versions":126},"webkit2gtk3-soup2&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",[127],{"version":103,"is_range":104,"range_type":105,"version_start":9,"version_start_type":9,"version_end":106,"version_end_type":107,"fixed_in":9},{"ecosystem":119,"name":97,"vendor":120,"product":129,"cpe_part":9,"purl_type":100,"purl_namespace":120,"purl_name":129,"source":9,"versions":130},"webkit2gtk3-soup2&distro=SUSE Linux Enterprise Module for Basesystem 15 SP5",[131],{"version":103,"is_range":104,"range_type":105,"version_start":9,"version_start_type":9,"version_end":106,"version_end_type":107,"fixed_in":9},{"ecosystem":119,"name":97,"vendor":120,"product":133,"cpe_part":9,"purl_type":100,"purl_namespace":120,"purl_name":133,"source":9,"versions":134},"webkit2gtk3-soup2&distro=SUSE Linux Enterprise Server 15 SP4-LTSS",[135],{"version":103,"is_range":104,"range_type":105,"version_start":9,"version_start_type":9,"version_end":106,"version_end_type":107,"fixed_in":9},{"ecosystem":119,"name":97,"vendor":120,"product":137,"cpe_part":9,"purl_type":100,"purl_namespace":120,"purl_name":137,"source":9,"versions":138},"webkit2gtk3-soup2&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP4",[139],{"version":103,"is_range":104,"range_type":105,"version_start":9,"version_start_type":9,"version_end":106,"version_end_type":107,"fixed_in":9},{"ecosystem":119,"name":97,"vendor":120,"product":141,"cpe_part":9,"purl_type":100,"purl_namespace":120,"purl_name":141,"source":9,"versions":142},"webkit2gtk3-soup2&distro=SUSE Manager Proxy 4.3",[143],{"version":103,"is_range":104,"range_type":105,"version_start":9,"version_start_type":9,"version_end":106,"version_end_type":107,"fixed_in":9},{"ecosystem":119,"name":97,"vendor":120,"product":145,"cpe_part":9,"purl_type":100,"purl_namespace":120,"purl_name":145,"source":9,"versions":146},"webkit2gtk3-soup2&distro=SUSE Manager Server 4.3",[147],{"version":103,"is_range":104,"range_type":105,"version_start":9,"version_start_type":9,"version_end":106,"version_end_type":107,"fixed_in":9},{"ecosystem":119,"name":109,"vendor":120,"product":149,"cpe_part":9,"purl_type":100,"purl_namespace":120,"purl_name":149,"source":9,"versions":150},"webkit2gtk3&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",[151],{"version":103,"is_range":104,"range_type":105,"version_start":9,"version_start_type":9,"version_end":106,"version_end_type":107,"fixed_in":9},{"ecosystem":119,"name":109,"vendor":120,"product":153,"cpe_part":9,"purl_type":100,"purl_namespace":120,"purl_name":153,"source":9,"versions":154},"webkit2gtk3&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",[155],{"version":103,"is_range":104,"range_type":105,"version_start":9,"version_start_type":9,"version_end":106,"version_end_type":107,"fixed_in":9},{"ecosystem":119,"name":109,"vendor":120,"product":157,"cpe_part":9,"purl_type":100,"purl_namespace":120,"purl_name":157,"source":9,"versions":158},"webkit2gtk3&distro=SUSE Linux Enterprise Module for Desktop Applications 15 SP5",[159],{"version":103,"is_range":104,"range_type":105,"version_start":9,"version_start_type":9,"version_end":106,"version_end_type":107,"fixed_in":9},{"ecosystem":119,"name":109,"vendor":120,"product":161,"cpe_part":9,"purl_type":100,"purl_namespace":120,"purl_name":161,"source":9,"versions":162},"webkit2gtk3&distro=SUSE Linux Enterprise Server 15 SP4-LTSS",[163],{"version":103,"is_range":104,"range_type":105,"version_start":9,"version_start_type":9,"version_end":106,"version_end_type":107,"fixed_in":9},{"ecosystem":119,"name":109,"vendor":120,"product":165,"cpe_part":9,"purl_type":100,"purl_namespace":120,"purl_name":165,"source":9,"versions":166},"webkit2gtk3&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP4",[167],{"version":103,"is_range":104,"range_type":105,"version_start":9,"version_start_type":9,"version_end":106,"version_end_type":107,"fixed_in":9},{"ecosystem":119,"name":114,"vendor":120,"product":169,"cpe_part":9,"purl_type":100,"purl_namespace":120,"purl_name":169,"source":9,"versions":170},"webkit2gtk4&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",[171],{"version":103,"is_range":104,"range_type":105,"version_start":9,"version_start_type":9,"version_end":106,"version_end_type":107,"fixed_in":9},{"ecosystem":119,"name":114,"vendor":120,"product":173,"cpe_part":9,"purl_type":100,"purl_namespace":120,"purl_name":173,"source":9,"versions":174},"webkit2gtk4&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",[175],{"version":103,"is_range":104,"range_type":105,"version_start":9,"version_start_type":9,"version_end":106,"version_end_type":107,"fixed_in":9},{"ecosystem":119,"name":114,"vendor":120,"product":177,"cpe_part":9,"purl_type":100,"purl_namespace":120,"purl_name":177,"source":9,"versions":178},"webkit2gtk4&distro=SUSE Linux Enterprise Module for Development Tools 15 SP5",[179],{"version":103,"is_range":104,"range_type":105,"version_start":9,"version_start_type":9,"version_end":106,"version_end_type":107,"fixed_in":9},{"ecosystem":119,"name":114,"vendor":120,"product":181,"cpe_part":9,"purl_type":100,"purl_namespace":120,"purl_name":181,"source":9,"versions":182},"webkit2gtk4&distro=SUSE Linux Enterprise Server 15 SP4-LTSS",[183],{"version":103,"is_range":104,"range_type":105,"version_start":9,"version_start_type":9,"version_end":106,"version_end_type":107,"fixed_in":9},{"ecosystem":119,"name":114,"vendor":120,"product":185,"cpe_part":9,"purl_type":100,"purl_namespace":120,"purl_name":185,"source":9,"versions":186},"webkit2gtk4&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP4",[187],{"version":103,"is_range":104,"range_type":105,"version_start":9,"version_start_type":9,"version_end":106,"version_end_type":107,"fixed_in":9}]