SUSE-SU-2024:4117-1

Advisory lineage Upstream: 5 Downstream: 0
Published: 04 Dec 2024, 09:57
Last modified:04 Feb 2026, 04:31

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

04 Dec 2024, 09:57
Published
Vulnerability first disclosed
04 Feb 2026, 04:31
Last Modified
Vulnerability information updated

Description

Security update for webkit2gtk3 This update for webkit2gtk3 fixes the following issues: Update to version 2.46.3 (bsc#1232747), including fixes for: - CVE-2024-44308: Fixed arbitrary code execution by not allocating DFG register after a slow path (bsc#1233631). - CVE-2024-44309: Fixed a data isolation bypass vulnerability (bsc#1233632). - CVE-2024-44244: Processing maliciously crafted web content may lead to an unexpected process crash. - CVE-2024-44296: Processing maliciously crafted web content may prevent Content Security Policy from being enforced.

Affected Systems

  • opensusewebkit2gtk3-soup2&distro=openSUSE Leap 15.5

    < 2.46.3-150400.4.97.1

  • opensusewebkit2gtk3&distro=openSUSE Leap 15.5

    < 2.46.3-150400.4.97.1

  • opensusewebkit2gtk4&distro=openSUSE Leap 15.5

    < 2.46.3-150400.4.97.1

  • susewebkit2gtk3-soup2&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS

    < 2.46.3-150400.4.97.1

  • susewebkit2gtk3-soup2&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS

    < 2.46.3-150400.4.97.1

  • susewebkit2gtk3-soup2&distro=SUSE Linux Enterprise Module for Basesystem 15 SP5

    < 2.46.3-150400.4.97.1

  • susewebkit2gtk3-soup2&distro=SUSE Linux Enterprise Server 15 SP4-LTSS

    < 2.46.3-150400.4.97.1

  • susewebkit2gtk3-soup2&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP4

    < 2.46.3-150400.4.97.1

  • susewebkit2gtk3-soup2&distro=SUSE Manager Proxy 4.3

    < 2.46.3-150400.4.97.1

  • susewebkit2gtk3-soup2&distro=SUSE Manager Server 4.3

    < 2.46.3-150400.4.97.1

  • susewebkit2gtk3&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS

    < 2.46.3-150400.4.97.1

  • susewebkit2gtk3&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS

    < 2.46.3-150400.4.97.1

  • susewebkit2gtk3&distro=SUSE Linux Enterprise Module for Desktop Applications 15 SP5

    < 2.46.3-150400.4.97.1

  • susewebkit2gtk3&distro=SUSE Linux Enterprise Server 15 SP4-LTSS

    < 2.46.3-150400.4.97.1

  • susewebkit2gtk3&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP4

    < 2.46.3-150400.4.97.1

  • susewebkit2gtk4&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS

    < 2.46.3-150400.4.97.1

  • susewebkit2gtk4&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS

    < 2.46.3-150400.4.97.1

  • susewebkit2gtk4&distro=SUSE Linux Enterprise Module for Development Tools 15 SP5

    < 2.46.3-150400.4.97.1

  • susewebkit2gtk4&distro=SUSE Linux Enterprise Server 15 SP4-LTSS

    < 2.46.3-150400.4.97.1

  • susewebkit2gtk4&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP4

    < 2.46.3-150400.4.97.1

References (9)