Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2019-8680 (GCVE-0-2019-8680)
Vulnerability from cvelistv5 – Published: 2019-12-18 17:33 – Updated: 2024-08-04 21:24
VLAI?
EPSS
Summary
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.
Severity ?
No CVSS data available.
CWE
- Processing maliciously crafted web content may lead to arbitrary code execution
Assigner
References
7 references
| URL | Tags |
|---|---|
| https://support.apple.com/HT210346 | x_refsource_MISC |
| https://support.apple.com/HT210348 | x_refsource_MISC |
| https://support.apple.com/HT210351 | x_refsource_MISC |
| https://support.apple.com/HT210355 | x_refsource_MISC |
| https://support.apple.com/HT210356 | x_refsource_MISC |
| https://support.apple.com/HT210357 | x_refsource_MISC |
| https://support.apple.com/HT210358 | x_refsource_MISC |
Impacted products
7 products
| Vendor | Product | Version | |
|---|---|---|---|
| Apple | iOS |
Affected:
unspecified , < iOS 12.4
(custom)
|
|
| Apple | macOS |
Affected:
unspecified , < macOS Mojave 10.14.6
(custom)
|
|
| Apple | tvOS |
Affected:
unspecified , < tvOS 12.4
(custom)
|
|
| Apple | Safari |
Affected:
unspecified , < Safari 12.1.2
(custom)
|
|
| Apple | iTunes for Windows |
Affected:
unspecified , < iTunes for Windows 12.9.6
(custom)
|
|
| Apple | iCloud for Windows |
Affected:
unspecified , < iCloud for Windows 7.13
(custom)
|
|
| Apple | iCloud for Windows (Microsoft Store) |
Affected:
unspecified , < iCloud for Windows 10.6
(custom)
|
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T21:24:29.507Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://support.apple.com/HT210346"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://support.apple.com/HT210348"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://support.apple.com/HT210351"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://support.apple.com/HT210355"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://support.apple.com/HT210356"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://support.apple.com/HT210357"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://support.apple.com/HT210358"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "iOS",
"vendor": "Apple",
"versions": [
{
"lessThan": "iOS 12.4",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "macOS",
"vendor": "Apple",
"versions": [
{
"lessThan": "macOS Mojave 10.14.6",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "tvOS",
"vendor": "Apple",
"versions": [
{
"lessThan": "tvOS 12.4",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "Safari",
"vendor": "Apple",
"versions": [
{
"lessThan": "Safari 12.1.2",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "iTunes for Windows",
"vendor": "Apple",
"versions": [
{
"lessThan": "iTunes for Windows 12.9.6",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "iCloud for Windows",
"vendor": "Apple",
"versions": [
{
"lessThan": "iCloud for Windows 7.13",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "iCloud for Windows (Microsoft Store)",
"vendor": "Apple",
"versions": [
{
"lessThan": "iCloud for Windows 10.6",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Processing maliciously crafted web content may lead to arbitrary code execution",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2019-12-18T17:33:21.000Z",
"orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
"shortName": "apple"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://support.apple.com/HT210346"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://support.apple.com/HT210348"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://support.apple.com/HT210351"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://support.apple.com/HT210355"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://support.apple.com/HT210356"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://support.apple.com/HT210357"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://support.apple.com/HT210358"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "product-security@apple.com",
"ID": "CVE-2019-8680",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "iOS",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "iOS 12.4"
}
]
}
},
{
"product_name": "macOS",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "macOS Mojave 10.14.6"
}
]
}
},
{
"product_name": "tvOS",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "tvOS 12.4"
}
]
}
},
{
"product_name": "Safari",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "Safari 12.1.2"
}
]
}
},
{
"product_name": "iTunes for Windows",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "iTunes for Windows 12.9.6"
}
]
}
},
{
"product_name": "iCloud for Windows",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "iCloud for Windows 7.13"
}
]
}
},
{
"product_name": "iCloud for Windows (Microsoft Store)",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "iCloud for Windows 10.6"
}
]
}
}
]
},
"vendor_name": "Apple"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Processing maliciously crafted web content may lead to arbitrary code execution"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://support.apple.com/HT210346",
"refsource": "MISC",
"url": "https://support.apple.com/HT210346"
},
{
"name": "https://support.apple.com/HT210348",
"refsource": "MISC",
"url": "https://support.apple.com/HT210348"
},
{
"name": "https://support.apple.com/HT210351",
"refsource": "MISC",
"url": "https://support.apple.com/HT210351"
},
{
"name": "https://support.apple.com/HT210355",
"refsource": "MISC",
"url": "https://support.apple.com/HT210355"
},
{
"name": "https://support.apple.com/HT210356",
"refsource": "MISC",
"url": "https://support.apple.com/HT210356"
},
{
"name": "https://support.apple.com/HT210357",
"refsource": "MISC",
"url": "https://support.apple.com/HT210357"
},
{
"name": "https://support.apple.com/HT210358",
"refsource": "MISC",
"url": "https://support.apple.com/HT210358"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
"assignerShortName": "apple",
"cveId": "CVE-2019-8680",
"datePublished": "2019-12-18T17:33:21.000Z",
"dateReserved": "2019-02-18T00:00:00.000Z",
"dateUpdated": "2024-08-04T21:24:29.507Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2019-8680",
"date": "2026-05-20",
"epss": "0.00816",
"percentile": "0.74541"
},
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:apple:icloud:*:*:*:*:*:windows:*:*\", \"versionEndExcluding\": \"7.13\", \"matchCriteriaId\": \"086B8913-51FE-4FCA-AB2C-47541F2C3252\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:apple:icloud:*:*:*:*:*:windows:*:*\", \"versionStartIncluding\": \"10.0\", \"versionEndExcluding\": \"10.6\", \"matchCriteriaId\": \"71143206-77A6-4B8F-964B-FD4E00C1AE60\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:apple:itunes:*:*:*:*:*:windows:*:*\", \"versionEndExcluding\": \"12.9.6\", \"matchCriteriaId\": \"F3310BC8-34F6-4C8A-B6B8-FCEB9033902B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"12.1.2\", \"matchCriteriaId\": \"11DC97B1-0EC4-4DCE-999C-743D64E4D108\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"12.4\", \"matchCriteriaId\": \"78127EE5-23FE-4C66-B7EE-2CF3E19F0503\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"10.14.6\", \"matchCriteriaId\": \"B0E97851-4DFF-4852-A339-183331F4ACBC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"12.4\", \"matchCriteriaId\": \"AC281794-DEC0-4C8A-8B92-F8E5D8785EF6\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.\"}, {\"lang\": \"es\", \"value\": \"M\\u00faltiples problemas de corrupci\\u00f3n de memoria fueron abordados mejorando el manejo de la memoria. Este problema es corregido en iOS versi\\u00f3n 12.4, macOS Mojave versi\\u00f3n 10.14.6, tvOS versi\\u00f3n 12.4, Safari versi\\u00f3n 12.1.2, iTunes para Windows versi\\u00f3n 12.9.6, iCloud para Windows versi\\u00f3n 7.13, iCloud para Windows versi\\u00f3n 10.6. El procesamiento de contenido web dise\\u00f1ado maliciosamente puede conllevar a una ejecuci\\u00f3n de c\\u00f3digo arbitrario.\"}]",
"id": "CVE-2019-8680",
"lastModified": "2024-11-21T04:50:17.140",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\", \"baseScore\": 8.8, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"REQUIRED\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 2.8, \"impactScore\": 5.9}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:N/C:P/I:P/A:P\", \"baseScore\": 6.8, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 8.6, \"impactScore\": 6.4, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": true}]}",
"published": "2019-12-18T18:15:33.553",
"references": "[{\"url\": \"https://support.apple.com/HT210346\", \"source\": \"product-security@apple.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://support.apple.com/HT210348\", \"source\": \"product-security@apple.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://support.apple.com/HT210351\", \"source\": \"product-security@apple.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://support.apple.com/HT210355\", \"source\": \"product-security@apple.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://support.apple.com/HT210356\", \"source\": \"product-security@apple.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://support.apple.com/HT210357\", \"source\": \"product-security@apple.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://support.apple.com/HT210358\", \"source\": \"product-security@apple.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://support.apple.com/HT210346\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://support.apple.com/HT210348\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://support.apple.com/HT210351\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://support.apple.com/HT210355\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://support.apple.com/HT210356\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://support.apple.com/HT210357\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://support.apple.com/HT210358\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}]",
"sourceIdentifier": "product-security@apple.com",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-787\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2019-8680\",\"sourceIdentifier\":\"product-security@apple.com\",\"published\":\"2019-12-18T18:15:33.553\",\"lastModified\":\"2024-11-21T04:50:17.140\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.\"},{\"lang\":\"es\",\"value\":\"M\u00faltiples problemas de corrupci\u00f3n de memoria fueron abordados mejorando el manejo de la memoria. Este problema es corregido en iOS versi\u00f3n 12.4, macOS Mojave versi\u00f3n 10.14.6, tvOS versi\u00f3n 12.4, Safari versi\u00f3n 12.1.2, iTunes para Windows versi\u00f3n 12.9.6, iCloud para Windows versi\u00f3n 7.13, iCloud para Windows versi\u00f3n 10.6. El procesamiento de contenido web dise\u00f1ado maliciosamente puede conllevar a una ejecuci\u00f3n de c\u00f3digo arbitrario.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\",\"baseScore\":8.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.8,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:P/I:P/A:P\",\"baseScore\":6.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-787\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apple:icloud:*:*:*:*:*:windows:*:*\",\"versionEndExcluding\":\"7.13\",\"matchCriteriaId\":\"086B8913-51FE-4FCA-AB2C-47541F2C3252\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apple:icloud:*:*:*:*:*:windows:*:*\",\"versionStartIncluding\":\"10.0\",\"versionEndExcluding\":\"10.6\",\"matchCriteriaId\":\"71143206-77A6-4B8F-964B-FD4E00C1AE60\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apple:itunes:*:*:*:*:*:windows:*:*\",\"versionEndExcluding\":\"12.9.6\",\"matchCriteriaId\":\"F3310BC8-34F6-4C8A-B6B8-FCEB9033902B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"12.1.2\",\"matchCriteriaId\":\"11DC97B1-0EC4-4DCE-999C-743D64E4D108\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"12.4\",\"matchCriteriaId\":\"78127EE5-23FE-4C66-B7EE-2CF3E19F0503\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"10.14.6\",\"matchCriteriaId\":\"B0E97851-4DFF-4852-A339-183331F4ACBC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"12.4\",\"matchCriteriaId\":\"AC281794-DEC0-4C8A-8B92-F8E5D8785EF6\"}]}]}],\"references\":[{\"url\":\"https://support.apple.com/HT210346\",\"source\":\"product-security@apple.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://support.apple.com/HT210348\",\"source\":\"product-security@apple.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://support.apple.com/HT210351\",\"source\":\"product-security@apple.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://support.apple.com/HT210355\",\"source\":\"product-security@apple.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://support.apple.com/HT210356\",\"source\":\"product-security@apple.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://support.apple.com/HT210357\",\"source\":\"product-security@apple.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://support.apple.com/HT210358\",\"source\":\"product-security@apple.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://support.apple.com/HT210346\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://support.apple.com/HT210348\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://support.apple.com/HT210351\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://support.apple.com/HT210355\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://support.apple.com/HT210356\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://support.apple.com/HT210357\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://support.apple.com/HT210358\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}"
}
}
CERTFR-2019-AVI-356
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans les produits Apple. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et un contournement de la politique de sécurité.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Apple | N/A | iOS versions antérieures à 12.4 | ||
| Apple | N/A | iCloud for Windows versions antérieures à 7.13 | ||
| Apple | Safari | Safari versions antérieures à 12.1.2 | ||
| Apple | macOS | macOS High Sierra 10.13.6 sans le correctif de sécurité 2019-004 | ||
| Apple | N/A | tvOS versions antérieures à 12.4 | ||
| Apple | macOS | macOS Mojave versions antérieures à 10.14.5 | ||
| Apple | macOS | macOS Sierra 10.12.6 sans le correctif de sécurité 2019-004 | ||
| Apple | N/A | watchOS versions antérieures à 5.3 | ||
| Apple | N/A | iCloud for Windows versions 10.x antérieures à 10.6 | ||
| Apple | N/A | iTunes versions antérieures à 12.9.6 |
References
| Title | Publication Time | Tags | ||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "iOS versions ant\u00e9rieures \u00e0 12.4",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "iCloud for Windows versions ant\u00e9rieures \u00e0 7.13",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "Safari versions ant\u00e9rieures \u00e0 12.1.2",
"product": {
"name": "Safari",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "macOS High Sierra 10.13.6 sans le correctif de s\u00e9curit\u00e9 2019-004",
"product": {
"name": "macOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "tvOS versions ant\u00e9rieures \u00e0 12.4",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "macOS Mojave versions ant\u00e9rieures \u00e0 10.14.5",
"product": {
"name": "macOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "macOS Sierra 10.12.6 sans le correctif de s\u00e9curit\u00e9 2019-004",
"product": {
"name": "macOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "watchOS versions ant\u00e9rieures \u00e0 5.3",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "iCloud for Windows versions 10.x ant\u00e9rieures \u00e0 10.6",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "iTunes versions ant\u00e9rieures \u00e0 12.9.6",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2019-8682",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8682"
},
{
"name": "CVE-2019-8649",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8649"
},
{
"name": "CVE-2019-8693",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8693"
},
{
"name": "CVE-2019-8656",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8656"
},
{
"name": "CVE-2019-8647",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8647"
},
{
"name": "CVE-2019-8648",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8648"
},
{
"name": "CVE-2019-8684",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8684"
},
{
"name": "CVE-2019-8657",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8657"
},
{
"name": "CVE-2018-19860",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-19860"
},
{
"name": "CVE-2019-8680",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8680"
},
{
"name": "CVE-2019-8695",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8695"
},
{
"name": "CVE-2019-8658",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8658"
},
{
"name": "CVE-2019-8679",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8679"
},
{
"name": "CVE-2019-8646",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8646"
},
{
"name": "CVE-2019-8690",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8690"
},
{
"name": "CVE-2019-8699",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8699"
},
{
"name": "CVE-2019-8698",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8698"
},
{
"name": "CVE-2019-8672",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8672"
},
{
"name": "CVE-2019-8670",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8670"
},
{
"name": "CVE-2019-8688",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8688"
},
{
"name": "CVE-2019-8641",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8641"
},
{
"name": "CVE-2019-8665",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8665"
},
{
"name": "CVE-2019-8685",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8685"
},
{
"name": "CVE-2019-8671",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8671"
},
{
"name": "CVE-2018-16860",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16860"
},
{
"name": "CVE-2019-8681",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8681"
},
{
"name": "CVE-2019-8673",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8673"
},
{
"name": "CVE-2019-8694",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8694"
},
{
"name": "CVE-2019-8678",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8678"
},
{
"name": "CVE-2019-8686",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8686"
},
{
"name": "CVE-2019-13118",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-13118"
},
{
"name": "CVE-2019-8659",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8659"
},
{
"name": "CVE-2019-8669",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8669"
},
{
"name": "CVE-2019-8697",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8697"
},
{
"name": "CVE-2019-8692",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8692"
},
{
"name": "CVE-2019-8691",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8691"
},
{
"name": "CVE-2019-8662",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8662"
},
{
"name": "CVE-2019-8624",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8624"
},
{
"name": "CVE-2019-8687",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8687"
},
{
"name": "CVE-2019-8666",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8666"
},
{
"name": "CVE-2019-8683",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8683"
},
{
"name": "CVE-2019-8677",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8677"
},
{
"name": "CVE-2019-8644",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8644"
},
{
"name": "CVE-2019-8667",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8667"
},
{
"name": "CVE-2019-8660",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8660"
},
{
"name": "CVE-2019-8689",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8689"
},
{
"name": "CVE-2019-8661",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8661"
},
{
"name": "CVE-2019-8663",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8663"
},
{
"name": "CVE-2019-8676",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8676"
}
],
"links": [],
"reference": "CERTFR-2019-AVI-356",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2019-07-23T00:00:00.000000"
},
{
"description": "Ajout des bulletins de s\u00e9curit\u00e9 Apple HT210356, HT210357 et HT210358",
"revision_date": "2019-07-24T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Injection de code indirecte \u00e0 distance (XSS)"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Apple.\nCertaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une\nex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0 distance\net un contournement de la politique de s\u00e9curit\u00e9.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Apple",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT210356 du 23 juillet 2019",
"url": "https://support.apple.com/en-us/HT210356"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT210355 du 22 juillet 2019",
"url": "https://support.apple.com/en-us/HT210355"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT210357 du 23 juillet 2019",
"url": "https://support.apple.com/en-us/HT210357"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT210358 du 23 juillet 2019",
"url": "https://support.apple.com/en-us/HT210358"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT210346 du 22 juillet 2019",
"url": "https://support.apple.com/en-us/HT210346"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT210348 du 22 juillet 2019",
"url": "https://support.apple.com/en-us/HT210348"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT210353 du 22 juillet 2019",
"url": "https://support.apple.com/en-us/HT210353"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT210351 du 22 juillet 2019",
"url": "https://support.apple.com/en-us/HT210351"
}
]
}
CERTFR-2019-AVI-356
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans les produits Apple. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et un contournement de la politique de sécurité.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Apple | N/A | iOS versions antérieures à 12.4 | ||
| Apple | N/A | iCloud for Windows versions antérieures à 7.13 | ||
| Apple | Safari | Safari versions antérieures à 12.1.2 | ||
| Apple | macOS | macOS High Sierra 10.13.6 sans le correctif de sécurité 2019-004 | ||
| Apple | N/A | tvOS versions antérieures à 12.4 | ||
| Apple | macOS | macOS Mojave versions antérieures à 10.14.5 | ||
| Apple | macOS | macOS Sierra 10.12.6 sans le correctif de sécurité 2019-004 | ||
| Apple | N/A | watchOS versions antérieures à 5.3 | ||
| Apple | N/A | iCloud for Windows versions 10.x antérieures à 10.6 | ||
| Apple | N/A | iTunes versions antérieures à 12.9.6 |
References
| Title | Publication Time | Tags | ||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "iOS versions ant\u00e9rieures \u00e0 12.4",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "iCloud for Windows versions ant\u00e9rieures \u00e0 7.13",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "Safari versions ant\u00e9rieures \u00e0 12.1.2",
"product": {
"name": "Safari",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "macOS High Sierra 10.13.6 sans le correctif de s\u00e9curit\u00e9 2019-004",
"product": {
"name": "macOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "tvOS versions ant\u00e9rieures \u00e0 12.4",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "macOS Mojave versions ant\u00e9rieures \u00e0 10.14.5",
"product": {
"name": "macOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "macOS Sierra 10.12.6 sans le correctif de s\u00e9curit\u00e9 2019-004",
"product": {
"name": "macOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "watchOS versions ant\u00e9rieures \u00e0 5.3",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "iCloud for Windows versions 10.x ant\u00e9rieures \u00e0 10.6",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "iTunes versions ant\u00e9rieures \u00e0 12.9.6",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2019-8682",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8682"
},
{
"name": "CVE-2019-8649",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8649"
},
{
"name": "CVE-2019-8693",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8693"
},
{
"name": "CVE-2019-8656",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8656"
},
{
"name": "CVE-2019-8647",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8647"
},
{
"name": "CVE-2019-8648",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8648"
},
{
"name": "CVE-2019-8684",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8684"
},
{
"name": "CVE-2019-8657",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8657"
},
{
"name": "CVE-2018-19860",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-19860"
},
{
"name": "CVE-2019-8680",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8680"
},
{
"name": "CVE-2019-8695",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8695"
},
{
"name": "CVE-2019-8658",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8658"
},
{
"name": "CVE-2019-8679",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8679"
},
{
"name": "CVE-2019-8646",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8646"
},
{
"name": "CVE-2019-8690",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8690"
},
{
"name": "CVE-2019-8699",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8699"
},
{
"name": "CVE-2019-8698",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8698"
},
{
"name": "CVE-2019-8672",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8672"
},
{
"name": "CVE-2019-8670",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8670"
},
{
"name": "CVE-2019-8688",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8688"
},
{
"name": "CVE-2019-8641",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8641"
},
{
"name": "CVE-2019-8665",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8665"
},
{
"name": "CVE-2019-8685",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8685"
},
{
"name": "CVE-2019-8671",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8671"
},
{
"name": "CVE-2018-16860",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16860"
},
{
"name": "CVE-2019-8681",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8681"
},
{
"name": "CVE-2019-8673",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8673"
},
{
"name": "CVE-2019-8694",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8694"
},
{
"name": "CVE-2019-8678",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8678"
},
{
"name": "CVE-2019-8686",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8686"
},
{
"name": "CVE-2019-13118",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-13118"
},
{
"name": "CVE-2019-8659",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8659"
},
{
"name": "CVE-2019-8669",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8669"
},
{
"name": "CVE-2019-8697",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8697"
},
{
"name": "CVE-2019-8692",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8692"
},
{
"name": "CVE-2019-8691",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8691"
},
{
"name": "CVE-2019-8662",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8662"
},
{
"name": "CVE-2019-8624",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8624"
},
{
"name": "CVE-2019-8687",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8687"
},
{
"name": "CVE-2019-8666",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8666"
},
{
"name": "CVE-2019-8683",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8683"
},
{
"name": "CVE-2019-8677",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8677"
},
{
"name": "CVE-2019-8644",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8644"
},
{
"name": "CVE-2019-8667",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8667"
},
{
"name": "CVE-2019-8660",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8660"
},
{
"name": "CVE-2019-8689",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8689"
},
{
"name": "CVE-2019-8661",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8661"
},
{
"name": "CVE-2019-8663",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8663"
},
{
"name": "CVE-2019-8676",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8676"
}
],
"links": [],
"reference": "CERTFR-2019-AVI-356",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2019-07-23T00:00:00.000000"
},
{
"description": "Ajout des bulletins de s\u00e9curit\u00e9 Apple HT210356, HT210357 et HT210358",
"revision_date": "2019-07-24T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Injection de code indirecte \u00e0 distance (XSS)"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Apple.\nCertaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une\nex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0 distance\net un contournement de la politique de s\u00e9curit\u00e9.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Apple",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT210356 du 23 juillet 2019",
"url": "https://support.apple.com/en-us/HT210356"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT210355 du 22 juillet 2019",
"url": "https://support.apple.com/en-us/HT210355"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT210357 du 23 juillet 2019",
"url": "https://support.apple.com/en-us/HT210357"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT210358 du 23 juillet 2019",
"url": "https://support.apple.com/en-us/HT210358"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT210346 du 22 juillet 2019",
"url": "https://support.apple.com/en-us/HT210346"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT210348 du 22 juillet 2019",
"url": "https://support.apple.com/en-us/HT210348"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT210353 du 22 juillet 2019",
"url": "https://support.apple.com/en-us/HT210353"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT210351 du 22 juillet 2019",
"url": "https://support.apple.com/en-us/HT210351"
}
]
}
BDU:2020-01374
Vulnerability from fstec - Published: 04.09.2019
VLAI Severity ?
Title
Уязвимость модуля отображения WebKit, связанная с выходом операции за границы буфера в памяти, позволяющая нарушителю выполнить произвольный код
Description
Уязвимость модуля отображения WebKit связана с выходом операции за границы буфера в памяти. Эксплуатация уязвимости может позволить нарушителю, действующему удалённо, выполнить произвольный код при помощи специально сформированной веб-страницы
Severity ?
Vendor
Сообщество свободного программного обеспечения, Novell Inc., Apple Inc.
Software Name
Debian GNU/Linux, Suse Linux Enterprise Desktop, SUSE Enterprise Storage, SUSE Linux Enterprise Server for SAP Applications, SUSE Linux Enterprise Software Development Kit, SUSE Linux Enterprise Workstation Extension, SUSE OpenStack Cloud, Suse Linux Enterprise Server, SUSE Linux Enterprise Module for Basesystem, OpenSUSE Leap, SUSE Linux Enterprise Module for Desktop Applications, SUSE Linux Enterprise Point of Sale, SUSE OpenStack Cloud Crowbar, HPE Helion Openstack, SUSE Linux Enterprise High Performance Computing, iOS, tvOS, iTunes, iCloud, Safari, MacOS, WPE WebKit, WebKitGTK
Software Version
9 (Debian GNU/Linux), 12 SP4 (Suse Linux Enterprise Desktop), 4 (SUSE Enterprise Storage), 12 SP2 (SUSE Linux Enterprise Server for SAP Applications), 12 SP2-BCL (SUSE Linux Enterprise Server for SAP Applications), 12 SP2-ESPOS (SUSE Linux Enterprise Server for SAP Applications), 12 SP2-LTSS (SUSE Linux Enterprise Server for SAP Applications), 12 SP3 (SUSE Linux Enterprise Server for SAP Applications), 12 SP4 (SUSE Linux Enterprise Server for SAP Applications), 12 SP4 (SUSE Linux Enterprise Software Development Kit), 12 SP4 (SUSE Linux Enterprise Workstation Extension), 7 (SUSE OpenStack Cloud), 12 SP4 (Suse Linux Enterprise Server), 15 (SUSE Linux Enterprise Module for Basesystem), 15 SP1 (SUSE Linux Enterprise Module for Basesystem), 15.0 (OpenSUSE Leap), 5 (SUSE Enterprise Storage), 15 (SUSE Linux Enterprise Module for Desktop Applications), 12 SP2-CLIENT (SUSE Linux Enterprise Point of Sale), 15 SP1 (SUSE Linux Enterprise Module for Desktop Applications), 12 SP2-BCL (Suse Linux Enterprise Server), 12 SP2-ESPOS (Suse Linux Enterprise Server), 15.1 (OpenSUSE Leap), 12 SP2-LTSS (Suse Linux Enterprise Server), 12 SP3-LTSS (Suse Linux Enterprise Server), 8 (SUSE OpenStack Cloud), 12 SP3-BCL (Suse Linux Enterprise Server), 12 SP5 (Suse Linux Enterprise Server), 12 SP3-BCL (SUSE Linux Enterprise Server for SAP Applications), 12 SP3-LTSS (SUSE Linux Enterprise Server for SAP Applications), 12 SP5 (SUSE Linux Enterprise Software Development Kit), 8 (SUSE OpenStack Cloud Crowbar), 10 (Debian GNU/Linux), 8 (HPE Helion Openstack), 12 SP3-ESPOS (Suse Linux Enterprise Server), 12 SP3-ESPOS (SUSE Linux Enterprise Server for SAP Applications), 12 SP5 (SUSE Linux Enterprise High Performance Computing), до 12.4 (iOS), до 12.4 (tvOS), до 12.9.6 (iTunes), до 7.13 (iCloud), от 10.0 до 10.6 (iCloud), до 12.1.2 (Safari), Mojave 10.14.6 (MacOS), до 2.24.3 (WPE WebKit), до 2.24.4 (WebKitGTK)
Possible Mitigations
Использование рекомендаций производителя:
Для Debian GNU/Linux:
https://www.debian.org/security/2019/dsa-4515
Для программных продуктов Novell Inc.:
https://www.suse.com/security/cve/CVE-2019-8680/
Для программных продуктов Apple Inc.:
https://support.apple.com/HT210346
https://support.apple.com/HT210348
https://support.apple.com/HT210351
https://support.apple.com/HT210355
https://support.apple.com/HT210356
https://support.apple.com/HT210357
https://support.apple.com/HT210358
Для WebKitGTK и WPE WebKit:
https://webkitgtk.org/security/WSA-2019-0004.html
Reference
https://www.debian.org/security/2019/dsa-4515
https://www.suse.com/security/cve/CVE-2019-8680/
https://support.apple.com/HT210346
https://support.apple.com/HT210348
https://support.apple.com/HT210351
https://support.apple.com/HT210355
https://support.apple.com/HT210356
https://support.apple.com/HT210357
https://support.apple.com/HT210358
https://webkitgtk.org/security/WSA-2019-0004.html
CWE
CWE-119
{
"CVSS 2.0": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
"CVSS 3.0": "AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"CVSS 4.0": null,
"remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
"remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
"\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "\u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f, Novell Inc., Apple Inc.",
"\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "9 (Debian GNU/Linux), 12 SP4 (Suse Linux Enterprise Desktop), 4 (SUSE Enterprise Storage), 12 SP2 (SUSE Linux Enterprise Server for SAP Applications), 12 SP2-BCL (SUSE Linux Enterprise Server for SAP Applications), 12 SP2-ESPOS (SUSE Linux Enterprise Server for SAP Applications), 12 SP2-LTSS (SUSE Linux Enterprise Server for SAP Applications), 12 SP3 (SUSE Linux Enterprise Server for SAP Applications), 12 SP4 (SUSE Linux Enterprise Server for SAP Applications), 12 SP4 (SUSE Linux Enterprise Software Development Kit), 12 SP4 (SUSE Linux Enterprise Workstation Extension), 7 (SUSE OpenStack Cloud), 12 SP4 (Suse Linux Enterprise Server), 15 (SUSE Linux Enterprise Module for Basesystem), 15 SP1 (SUSE Linux Enterprise Module for Basesystem), 15.0 (OpenSUSE Leap), 5 (SUSE Enterprise Storage), 15 (SUSE Linux Enterprise Module for Desktop Applications), 12 SP2-CLIENT (SUSE Linux Enterprise Point of Sale), 15 SP1 (SUSE Linux Enterprise Module for Desktop Applications), 12 SP2-BCL (Suse Linux Enterprise Server), 12 SP2-ESPOS (Suse Linux Enterprise Server), 15.1 (OpenSUSE Leap), 12 SP2-LTSS (Suse Linux Enterprise Server), 12 SP3-LTSS (Suse Linux Enterprise Server), 8 (SUSE OpenStack Cloud), 12 SP3-BCL (Suse Linux Enterprise Server), 12 SP5 (Suse Linux Enterprise Server), 12 SP3-BCL (SUSE Linux Enterprise Server for SAP Applications), 12 SP3-LTSS (SUSE Linux Enterprise Server for SAP Applications), 12 SP5 (SUSE Linux Enterprise Software Development Kit), 8 (SUSE OpenStack Cloud Crowbar), 10 (Debian GNU/Linux), 8 (HPE Helion Openstack), 12 SP3-ESPOS (Suse Linux Enterprise Server), 12 SP3-ESPOS (SUSE Linux Enterprise Server for SAP Applications), 12 SP5 (SUSE Linux Enterprise High Performance Computing), \u0434\u043e 12.4 (iOS), \u0434\u043e 12.4 (tvOS), \u0434\u043e 12.9.6 (iTunes), \u0434\u043e 7.13 (iCloud), \u043e\u0442 10.0 \u0434\u043e 10.6 (iCloud), \u0434\u043e 12.1.2 (Safari), Mojave 10.14.6 (MacOS), \u0434\u043e 2.24.3 (WPE WebKit), \u0434\u043e 2.24.4 (WebKitGTK)",
"\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f:\n\u0414\u043b\u044f Debian GNU/Linux:\nhttps://www.debian.org/security/2019/dsa-4515\n\n\u0414\u043b\u044f \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u044b\u0445 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u043e\u0432 Novell Inc.:\nhttps://www.suse.com/security/cve/CVE-2019-8680/\n\n\u0414\u043b\u044f \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u044b\u0445 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u043e\u0432 Apple Inc.:\nhttps://support.apple.com/HT210346\nhttps://support.apple.com/HT210348\nhttps://support.apple.com/HT210351\nhttps://support.apple.com/HT210355\nhttps://support.apple.com/HT210356\nhttps://support.apple.com/HT210357\nhttps://support.apple.com/HT210358\n\n\u0414\u043b\u044f WebKitGTK \u0438 WPE WebKit:\nhttps://webkitgtk.org/security/WSA-2019-0004.html",
"\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "04.09.2019",
"\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "01.06.2020",
"\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "10.04.2020",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2020-01374",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2019-8680",
"\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
"\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
"\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Debian GNU/Linux, Suse Linux Enterprise Desktop, SUSE Enterprise Storage, SUSE Linux Enterprise Server for SAP Applications, SUSE Linux Enterprise Software Development Kit, SUSE Linux Enterprise Workstation Extension, SUSE OpenStack Cloud, Suse Linux Enterprise Server, SUSE Linux Enterprise Module for Basesystem, OpenSUSE Leap, SUSE Linux Enterprise Module for Desktop Applications, SUSE Linux Enterprise Point of Sale, SUSE OpenStack Cloud Crowbar, HPE Helion Openstack, SUSE Linux Enterprise High Performance Computing, iOS, tvOS, iTunes, iCloud, Safari, MacOS, WPE WebKit, WebKitGTK",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": "\u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Debian GNU/Linux 9 , Novell Inc. OpenSUSE Leap 15.0 , Novell Inc. OpenSUSE Leap 15.1 , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Debian GNU/Linux 10 , Apple Inc. iOS \u0434\u043e 12.4 , Apple Inc. tvOS \u0434\u043e 12.4 , Apple Inc. MacOS Mojave 10.14.6 ",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043c\u043e\u0434\u0443\u043b\u044f \u043e\u0442\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u044f WebKit, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u0430\u044f \u0441 \u0432\u044b\u0445\u043e\u0434\u043e\u043c \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u0438 \u0437\u0430 \u0433\u0440\u0430\u043d\u0438\u0446\u044b \u0431\u0443\u0444\u0435\u0440\u0430 \u0432 \u043f\u0430\u043c\u044f\u0442\u0438, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434",
"\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u0412\u044b\u0445\u043e\u0434 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u0438 \u0437\u0430 \u0433\u0440\u0430\u043d\u0438\u0446\u044b \u0431\u0443\u0444\u0435\u0440\u0430 \u0432 \u043f\u0430\u043c\u044f\u0442\u0438 (CWE-119)",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043c\u043e\u0434\u0443\u043b\u044f \u043e\u0442\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u044f WebKit \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u0432\u044b\u0445\u043e\u0434\u043e\u043c \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u0438 \u0437\u0430 \u0433\u0440\u0430\u043d\u0438\u0446\u044b \u0431\u0443\u0444\u0435\u0440\u0430 \u0432 \u043f\u0430\u043c\u044f\u0442\u0438. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0451\u043d\u043d\u043e, \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434 \u043f\u0440\u0438 \u043f\u043e\u043c\u043e\u0449\u0438 \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0441\u0444\u043e\u0440\u043c\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u0439 \u0432\u0435\u0431-\u0441\u0442\u0440\u0430\u043d\u0438\u0446\u044b",
"\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
"\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
"\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041c\u0430\u043d\u0438\u043f\u0443\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u0430\u043c\u0438 \u0434\u0430\u043d\u043d\u044b\u0445",
"\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://www.debian.org/security/2019/dsa-4515\nhttps://www.suse.com/security/cve/CVE-2019-8680/\nhttps://support.apple.com/HT210346\nhttps://support.apple.com/HT210348\nhttps://support.apple.com/HT210351\nhttps://support.apple.com/HT210355\nhttps://support.apple.com/HT210356\nhttps://support.apple.com/HT210357\nhttps://support.apple.com/HT210358\nhttps://webkitgtk.org/security/WSA-2019-0004.html",
"\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
"\u0422\u0438\u043f \u041f\u041e": "\u041e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u0430\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u0430, \u041f\u0440\u0438\u043a\u043b\u0430\u0434\u043d\u043e\u0435 \u041f\u041e \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c, \u0421\u0435\u0442\u0435\u0432\u043e\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0435 \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e",
"\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-119",
"\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 9,3)\n\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 8,8)"
}
FKIE_CVE-2019-8680
Vulnerability from fkie_nvd - Published: 2019-12-18 18:15 - Updated: 2024-11-21 04:50
Severity ?
Summary
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.
References
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:apple:icloud:*:*:*:*:*:windows:*:*",
"matchCriteriaId": "086B8913-51FE-4FCA-AB2C-47541F2C3252",
"versionEndExcluding": "7.13",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apple:icloud:*:*:*:*:*:windows:*:*",
"matchCriteriaId": "71143206-77A6-4B8F-964B-FD4E00C1AE60",
"versionEndExcluding": "10.6",
"versionStartIncluding": "10.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apple:itunes:*:*:*:*:*:windows:*:*",
"matchCriteriaId": "F3310BC8-34F6-4C8A-B6B8-FCEB9033902B",
"versionEndExcluding": "12.9.6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*",
"matchCriteriaId": "11DC97B1-0EC4-4DCE-999C-743D64E4D108",
"versionEndExcluding": "12.1.2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*",
"matchCriteriaId": "78127EE5-23FE-4C66-B7EE-2CF3E19F0503",
"versionEndExcluding": "12.4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*",
"matchCriteriaId": "B0E97851-4DFF-4852-A339-183331F4ACBC",
"versionEndExcluding": "10.14.6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*",
"matchCriteriaId": "AC281794-DEC0-4C8A-8B92-F8E5D8785EF6",
"versionEndExcluding": "12.4",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution."
},
{
"lang": "es",
"value": "M\u00faltiples problemas de corrupci\u00f3n de memoria fueron abordados mejorando el manejo de la memoria. Este problema es corregido en iOS versi\u00f3n 12.4, macOS Mojave versi\u00f3n 10.14.6, tvOS versi\u00f3n 12.4, Safari versi\u00f3n 12.1.2, iTunes para Windows versi\u00f3n 12.9.6, iCloud para Windows versi\u00f3n 7.13, iCloud para Windows versi\u00f3n 10.6. El procesamiento de contenido web dise\u00f1ado maliciosamente puede conllevar a una ejecuci\u00f3n de c\u00f3digo arbitrario."
}
],
"id": "CVE-2019-8680",
"lastModified": "2024-11-21T04:50:17.140",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": true
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2019-12-18T18:15:33.553",
"references": [
{
"source": "product-security@apple.com",
"tags": [
"Vendor Advisory"
],
"url": "https://support.apple.com/HT210346"
},
{
"source": "product-security@apple.com",
"tags": [
"Vendor Advisory"
],
"url": "https://support.apple.com/HT210348"
},
{
"source": "product-security@apple.com",
"tags": [
"Vendor Advisory"
],
"url": "https://support.apple.com/HT210351"
},
{
"source": "product-security@apple.com",
"tags": [
"Vendor Advisory"
],
"url": "https://support.apple.com/HT210355"
},
{
"source": "product-security@apple.com",
"tags": [
"Vendor Advisory"
],
"url": "https://support.apple.com/HT210356"
},
{
"source": "product-security@apple.com",
"tags": [
"Vendor Advisory"
],
"url": "https://support.apple.com/HT210357"
},
{
"source": "product-security@apple.com",
"tags": [
"Vendor Advisory"
],
"url": "https://support.apple.com/HT210358"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://support.apple.com/HT210346"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://support.apple.com/HT210348"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://support.apple.com/HT210351"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://support.apple.com/HT210355"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://support.apple.com/HT210356"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://support.apple.com/HT210357"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://support.apple.com/HT210358"
}
],
"sourceIdentifier": "product-security@apple.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-787"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
GHSA-9JWG-HWXJ-WMGX
Vulnerability from github – Published: 2022-05-24 17:04 – Updated: 2022-05-24 17:04
VLAI?
Details
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.
{
"affected": [],
"aliases": [
"CVE-2019-8680"
],
"database_specific": {
"cwe_ids": [],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2019-12-18T18:15:00Z",
"severity": "MODERATE"
},
"details": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"id": "GHSA-9jwg-hwxj-wmgx",
"modified": "2022-05-24T17:04:26Z",
"published": "2022-05-24T17:04:26Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8680"
},
{
"type": "WEB",
"url": "https://support.apple.com/HT210346"
},
{
"type": "WEB",
"url": "https://support.apple.com/HT210348"
},
{
"type": "WEB",
"url": "https://support.apple.com/HT210351"
},
{
"type": "WEB",
"url": "https://support.apple.com/HT210355"
},
{
"type": "WEB",
"url": "https://support.apple.com/HT210356"
},
{
"type": "WEB",
"url": "https://support.apple.com/HT210357"
},
{
"type": "WEB",
"url": "https://support.apple.com/HT210358"
}
],
"schema_version": "1.4.0",
"severity": []
}
GSD-2019-8680
Vulnerability from gsd - Updated: 2023-12-13 01:23Details
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2019-8680",
"description": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"id": "GSD-2019-8680",
"references": [
"https://www.suse.com/security/cve/CVE-2019-8680.html",
"https://www.debian.org/security/2019/dsa-4515",
"https://access.redhat.com/errata/RHSA-2020:4035",
"https://access.redhat.com/errata/RHEA-2019:4262",
"https://ubuntu.com/security/CVE-2019-8680",
"https://advisories.mageia.org/CVE-2019-8680.html",
"https://security.archlinux.org/CVE-2019-8680",
"https://linux.oracle.com/cve/CVE-2019-8680.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2019-8680"
],
"details": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"id": "GSD-2019-8680",
"modified": "2023-12-13T01:23:48.078477Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "product-security@apple.com",
"ID": "CVE-2019-8680",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "iOS",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "iOS 12.4"
}
]
}
},
{
"product_name": "macOS",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "macOS Mojave 10.14.6"
}
]
}
},
{
"product_name": "tvOS",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "tvOS 12.4"
}
]
}
},
{
"product_name": "Safari",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "Safari 12.1.2"
}
]
}
},
{
"product_name": "iTunes for Windows",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "iTunes for Windows 12.9.6"
}
]
}
},
{
"product_name": "iCloud for Windows",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "iCloud for Windows 7.13"
}
]
}
},
{
"product_name": "iCloud for Windows (Microsoft Store)",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "iCloud for Windows 10.6"
}
]
}
}
]
},
"vendor_name": "Apple"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Processing maliciously crafted web content may lead to arbitrary code execution"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://support.apple.com/HT210346",
"refsource": "MISC",
"url": "https://support.apple.com/HT210346"
},
{
"name": "https://support.apple.com/HT210348",
"refsource": "MISC",
"url": "https://support.apple.com/HT210348"
},
{
"name": "https://support.apple.com/HT210351",
"refsource": "MISC",
"url": "https://support.apple.com/HT210351"
},
{
"name": "https://support.apple.com/HT210355",
"refsource": "MISC",
"url": "https://support.apple.com/HT210355"
},
{
"name": "https://support.apple.com/HT210356",
"refsource": "MISC",
"url": "https://support.apple.com/HT210356"
},
{
"name": "https://support.apple.com/HT210357",
"refsource": "MISC",
"url": "https://support.apple.com/HT210357"
},
{
"name": "https://support.apple.com/HT210358",
"refsource": "MISC",
"url": "https://support.apple.com/HT210358"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:apple:icloud:*:*:*:*:*:windows:*:*",
"cpe_name": [],
"versionEndExcluding": "7.13",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apple:icloud:*:*:*:*:*:windows:*:*",
"cpe_name": [],
"versionEndExcluding": "10.6",
"versionStartIncluding": "10.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apple:itunes:*:*:*:*:*:windows:*:*",
"cpe_name": [],
"versionEndExcluding": "12.9.6",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "12.1.2",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "12.4",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "10.14.6",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "12.4",
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "product-security@apple.com",
"ID": "CVE-2019-8680"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-787"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://support.apple.com/HT210348",
"refsource": "MISC",
"tags": [
"Vendor Advisory"
],
"url": "https://support.apple.com/HT210348"
},
{
"name": "https://support.apple.com/HT210351",
"refsource": "MISC",
"tags": [
"Vendor Advisory"
],
"url": "https://support.apple.com/HT210351"
},
{
"name": "https://support.apple.com/HT210358",
"refsource": "MISC",
"tags": [
"Vendor Advisory"
],
"url": "https://support.apple.com/HT210358"
},
{
"name": "https://support.apple.com/HT210346",
"refsource": "MISC",
"tags": [
"Vendor Advisory"
],
"url": "https://support.apple.com/HT210346"
},
{
"name": "https://support.apple.com/HT210357",
"refsource": "MISC",
"tags": [
"Vendor Advisory"
],
"url": "https://support.apple.com/HT210357"
},
{
"name": "https://support.apple.com/HT210356",
"refsource": "MISC",
"tags": [
"Vendor Advisory"
],
"url": "https://support.apple.com/HT210356"
},
{
"name": "https://support.apple.com/HT210355",
"refsource": "MISC",
"tags": [
"Vendor Advisory"
],
"url": "https://support.apple.com/HT210355"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": true
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9
}
},
"lastModifiedDate": "2020-08-24T17:37Z",
"publishedDate": "2019-12-18T18:15Z"
}
}
}
OPENSUSE-SU-2019:2207-1
Vulnerability from csaf_opensuse - Published: 2019-09-28 12:20 - Updated: 2019-09-28 12:20Summary
Security update for webkit2gtk3
Severity
Important
Notes
Title of the patch: Security update for webkit2gtk3
Description of the patch: This update for webkit2gtk3 fixes the following issues:
Security issues fixed:
- CVE-2019-8673, CVE-2019-8678, CVE-2019-8686, CVE-2019-8683, CVE-2019-8671,
CVE-2019-8595, CVE-2019-8684, CVE-2019-8681, CVE-2019-8615, CVE-2019-8689,
CVE-2019-8680, CVE-2019-8672, CVE-2019-8676, CVE-2019-8666, CVE-2019-8644,
CVE-2019-8658, CVE-2019-8690, CVE-2019-8688, CVE-2019-8649, CVE-2019-8679,
CVE-2019-8687, CVE-2019-8669, CVE-2019-8677, CVE-2019-8607 (bsc#1148931).
This update was imported from the SUSE:SLE-15:Update update project.
Patchnames: openSUSE-2019-2207
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
8.8 (High)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
6.5 (Medium)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
6.3 (Medium)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
4.3 (Medium)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.3 (Medium)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.3 (Medium)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.3 (Medium)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.3 (Medium)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.3 (Medium)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.3 (Medium)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.3 (Medium)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.8 (High)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.3 (Medium)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.3 (Medium)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.3 (Medium)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.3 (Medium)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.3 (Medium)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.3 (Medium)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.8 (High)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.3 (Medium)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.8 (High)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
77 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for webkit2gtk3",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for webkit2gtk3 fixes the following issues:\n\nSecurity issues fixed:\n\n- CVE-2019-8673, CVE-2019-8678, CVE-2019-8686, CVE-2019-8683, CVE-2019-8671,\n CVE-2019-8595, CVE-2019-8684, CVE-2019-8681, CVE-2019-8615, CVE-2019-8689,\n CVE-2019-8680, CVE-2019-8672, CVE-2019-8676, CVE-2019-8666, CVE-2019-8644,\n CVE-2019-8658, CVE-2019-8690, CVE-2019-8688, CVE-2019-8649, CVE-2019-8679,\n CVE-2019-8687, CVE-2019-8669, CVE-2019-8677, CVE-2019-8607 (bsc#1148931).\n\nThis update was imported from the SUSE:SLE-15:Update update project.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-2019-2207",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2019_2207-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2019:2207-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/ILDNTG7O4EJQAKVHL4AWGZGRHZJTSPFV/#ILDNTG7O4EJQAKVHL4AWGZGRHZJTSPFV"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2019:2207-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/ILDNTG7O4EJQAKVHL4AWGZGRHZJTSPFV/#ILDNTG7O4EJQAKVHL4AWGZGRHZJTSPFV"
},
{
"category": "self",
"summary": "SUSE Bug 1148931",
"url": "https://bugzilla.suse.com/1148931"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8595 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8595/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8607 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8607/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8615 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8615/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8644 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8644/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8649 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8649/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8658 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8658/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8666 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8666/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8669 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8669/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8671 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8671/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8672 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8672/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8673 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8673/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8676 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8676/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8677 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8677/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8678 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8678/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8679 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8679/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8680 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8680/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8681 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8681/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8683 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8683/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8684 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8684/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8686 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8686/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8687 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8687/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8688 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8688/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8689 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8689/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8690 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8690/"
}
],
"title": "Security update for webkit2gtk3",
"tracking": {
"current_release_date": "2019-09-28T12:20:53Z",
"generator": {
"date": "2019-09-28T12:20:53Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2019:2207-1",
"initial_release_date": "2019-09-28T12:20:53Z",
"revision_history": [
{
"date": "2019-09-28T12:20:53Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"product": {
"name": "libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"product_id": "libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586"
}
},
{
"category": "product_version",
"name": "libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"product": {
"name": "libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"product_id": "libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586"
}
},
{
"category": "product_version",
"name": "typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"product": {
"name": "typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"product_id": "typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586"
}
},
{
"category": "product_version",
"name": "typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"product": {
"name": "typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"product_id": "typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586"
}
},
{
"category": "product_version",
"name": "typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"product": {
"name": "typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"product_id": "typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586"
}
},
{
"category": "product_version",
"name": "webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"product": {
"name": "webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"product_id": "webkit-jsc-4-2.24.4-lp150.2.25.1.i586"
}
},
{
"category": "product_version",
"name": "webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"product": {
"name": "webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"product_id": "webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586"
}
},
{
"category": "product_version",
"name": "webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"product": {
"name": "webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"product_id": "webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586"
}
},
{
"category": "product_version",
"name": "webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"product": {
"name": "webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"product_id": "webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586"
}
},
{
"category": "product_version",
"name": "webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"product": {
"name": "webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"product_id": "webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"product": {
"name": "libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"product_id": "libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"product": {
"name": "libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"product_id": "libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64"
}
},
{
"category": "product_version",
"name": "libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"product": {
"name": "libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"product_id": "libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"product": {
"name": "libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"product_id": "libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"product": {
"name": "libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"product_id": "libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64"
}
},
{
"category": "product_version",
"name": "typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"product": {
"name": "typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"product_id": "typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64"
}
},
{
"category": "product_version",
"name": "typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"product": {
"name": "typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"product_id": "typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64"
}
},
{
"category": "product_version",
"name": "typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"product": {
"name": "typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"product_id": "typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64"
}
},
{
"category": "product_version",
"name": "webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"product": {
"name": "webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"product_id": "webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64"
}
},
{
"category": "product_version",
"name": "webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"product": {
"name": "webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"product_id": "webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64"
}
},
{
"category": "product_version",
"name": "webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"product": {
"name": "webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"product_id": "webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64"
}
},
{
"category": "product_version",
"name": "webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"product": {
"name": "webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"product_id": "webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64"
}
},
{
"category": "product_version",
"name": "webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64",
"product": {
"name": "webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64",
"product_id": "webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.0",
"product": {
"name": "openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.0"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586"
},
"product_reference": "libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64"
},
"product_reference": "libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64"
},
"product_reference": "libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586"
},
"product_reference": "libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64"
},
"product_reference": "libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64"
},
"product_reference": "libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch"
},
"product_reference": "libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586"
},
"product_reference": "typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64"
},
"product_reference": "typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586"
},
"product_reference": "typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64"
},
"product_reference": "typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586"
},
"product_reference": "typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64"
},
"product_reference": "typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit-jsc-4-2.24.4-lp150.2.25.1.i586 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586"
},
"product_reference": "webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64"
},
"product_reference": "webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586"
},
"product_reference": "webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64"
},
"product_reference": "webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586"
},
"product_reference": "webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64"
},
"product_reference": "webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586"
},
"product_reference": "webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64"
},
"product_reference": "webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586"
},
"product_reference": "webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
},
"product_reference": "webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-8595",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8595"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8595",
"url": "https://www.suse.com/security/cve/CVE-2019-8595"
},
{
"category": "external",
"summary": "SUSE Bug 1135715 for CVE-2019-8595",
"url": "https://bugzilla.suse.com/1135715"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:20:53Z",
"details": "low"
}
],
"title": "CVE-2019-8595"
},
{
"cve": "CVE-2019-8607",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8607"
}
],
"notes": [
{
"category": "general",
"text": "An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may result in the disclosure of process memory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8607",
"url": "https://www.suse.com/security/cve/CVE-2019-8607"
},
{
"category": "external",
"summary": "SUSE Bug 1135715 for CVE-2019-8607",
"url": "https://bugzilla.suse.com/1135715"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.1,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:20:53Z",
"details": "low"
}
],
"title": "CVE-2019-8607"
},
{
"cve": "CVE-2019-8615",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8615"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8615",
"url": "https://www.suse.com/security/cve/CVE-2019-8615"
},
{
"category": "external",
"summary": "SUSE Bug 1135715 for CVE-2019-8615",
"url": "https://bugzilla.suse.com/1135715"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:20:53Z",
"details": "low"
}
],
"title": "CVE-2019-8615"
},
{
"cve": "CVE-2019-8644",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8644"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8644",
"url": "https://www.suse.com/security/cve/CVE-2019-8644"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8644",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:20:53Z",
"details": "moderate"
}
],
"title": "CVE-2019-8644"
},
{
"cve": "CVE-2019-8649",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8649"
}
],
"notes": [
{
"category": "general",
"text": "A logic issue existed in the handling of synchronous page loads. This issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to universal cross site scripting.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8649",
"url": "https://www.suse.com/security/cve/CVE-2019-8649"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8649",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:20:53Z",
"details": "moderate"
}
],
"title": "CVE-2019-8649"
},
{
"cve": "CVE-2019-8658",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8658"
}
],
"notes": [
{
"category": "general",
"text": "A logic issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to universal cross site scripting.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8658",
"url": "https://www.suse.com/security/cve/CVE-2019-8658"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8658",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:20:53Z",
"details": "moderate"
}
],
"title": "CVE-2019-8658"
},
{
"cve": "CVE-2019-8666",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8666"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8666",
"url": "https://www.suse.com/security/cve/CVE-2019-8666"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8666",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:20:53Z",
"details": "moderate"
}
],
"title": "CVE-2019-8666"
},
{
"cve": "CVE-2019-8669",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8669"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8669",
"url": "https://www.suse.com/security/cve/CVE-2019-8669"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8669",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:20:53Z",
"details": "moderate"
}
],
"title": "CVE-2019-8669"
},
{
"cve": "CVE-2019-8671",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8671"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8671",
"url": "https://www.suse.com/security/cve/CVE-2019-8671"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8671",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:20:53Z",
"details": "moderate"
}
],
"title": "CVE-2019-8671"
},
{
"cve": "CVE-2019-8672",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8672"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8672",
"url": "https://www.suse.com/security/cve/CVE-2019-8672"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8672",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:20:53Z",
"details": "moderate"
}
],
"title": "CVE-2019-8672"
},
{
"cve": "CVE-2019-8673",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8673"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8673",
"url": "https://www.suse.com/security/cve/CVE-2019-8673"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8673",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:20:53Z",
"details": "moderate"
}
],
"title": "CVE-2019-8673"
},
{
"cve": "CVE-2019-8676",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8676"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8676",
"url": "https://www.suse.com/security/cve/CVE-2019-8676"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8676",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:20:53Z",
"details": "moderate"
}
],
"title": "CVE-2019-8676"
},
{
"cve": "CVE-2019-8677",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8677"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8677",
"url": "https://www.suse.com/security/cve/CVE-2019-8677"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8677",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:20:53Z",
"details": "moderate"
}
],
"title": "CVE-2019-8677"
},
{
"cve": "CVE-2019-8678",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8678"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8678",
"url": "https://www.suse.com/security/cve/CVE-2019-8678"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8678",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:20:53Z",
"details": "moderate"
}
],
"title": "CVE-2019-8678"
},
{
"cve": "CVE-2019-8679",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8679"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8679",
"url": "https://www.suse.com/security/cve/CVE-2019-8679"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8679",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:20:53Z",
"details": "moderate"
}
],
"title": "CVE-2019-8679"
},
{
"cve": "CVE-2019-8680",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8680"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8680",
"url": "https://www.suse.com/security/cve/CVE-2019-8680"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8680",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:20:53Z",
"details": "moderate"
}
],
"title": "CVE-2019-8680"
},
{
"cve": "CVE-2019-8681",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8681"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8681",
"url": "https://www.suse.com/security/cve/CVE-2019-8681"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8681",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:20:53Z",
"details": "moderate"
}
],
"title": "CVE-2019-8681"
},
{
"cve": "CVE-2019-8683",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8683"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8683",
"url": "https://www.suse.com/security/cve/CVE-2019-8683"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8683",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:20:53Z",
"details": "moderate"
}
],
"title": "CVE-2019-8683"
},
{
"cve": "CVE-2019-8684",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8684"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8684",
"url": "https://www.suse.com/security/cve/CVE-2019-8684"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8684",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:20:53Z",
"details": "moderate"
}
],
"title": "CVE-2019-8684"
},
{
"cve": "CVE-2019-8686",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8686"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8686",
"url": "https://www.suse.com/security/cve/CVE-2019-8686"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8686",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:20:53Z",
"details": "moderate"
}
],
"title": "CVE-2019-8686"
},
{
"cve": "CVE-2019-8687",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8687"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8687",
"url": "https://www.suse.com/security/cve/CVE-2019-8687"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8687",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:20:53Z",
"details": "moderate"
}
],
"title": "CVE-2019-8687"
},
{
"cve": "CVE-2019-8688",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8688"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8688",
"url": "https://www.suse.com/security/cve/CVE-2019-8688"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8688",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:20:53Z",
"details": "moderate"
}
],
"title": "CVE-2019-8688"
},
{
"cve": "CVE-2019-8689",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8689"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8689",
"url": "https://www.suse.com/security/cve/CVE-2019-8689"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8689",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:20:53Z",
"details": "moderate"
}
],
"title": "CVE-2019-8689"
},
{
"cve": "CVE-2019-8690",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8690"
}
],
"notes": [
{
"category": "general",
"text": "A logic issue existed in the handling of document loads. This issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to universal cross site scripting.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8690",
"url": "https://www.suse.com/security/cve/CVE-2019-8690"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8690",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:20:53Z",
"details": "moderate"
}
],
"title": "CVE-2019-8690"
}
]
}
OPENSUSE-SU-2019:2208-1
Vulnerability from csaf_opensuse - Published: 2019-09-28 12:21 - Updated: 2019-09-28 12:21Summary
Security update for webkit2gtk3
Severity
Important
Notes
Title of the patch: Security update for webkit2gtk3
Description of the patch: This update for webkit2gtk3 fixes the following issues:
Security issues fixed:
- CVE-2019-8673, CVE-2019-8678, CVE-2019-8686, CVE-2019-8683, CVE-2019-8671,
CVE-2019-8595, CVE-2019-8684, CVE-2019-8681, CVE-2019-8615, CVE-2019-8689,
CVE-2019-8680, CVE-2019-8672, CVE-2019-8676, CVE-2019-8666, CVE-2019-8644,
CVE-2019-8658, CVE-2019-8690, CVE-2019-8688, CVE-2019-8649, CVE-2019-8679,
CVE-2019-8687, CVE-2019-8669, CVE-2019-8677, CVE-2019-8607 (bsc#1148931).
This update was imported from the SUSE:SLE-15:Update update project.
Patchnames: openSUSE-2019-2208
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
8.8 (High)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
6.5 (Medium)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
6.3 (Medium)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
4.3 (Medium)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.3 (Medium)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.3 (Medium)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.3 (Medium)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.3 (Medium)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.3 (Medium)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.3 (Medium)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.3 (Medium)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.8 (High)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.3 (Medium)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.3 (Medium)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.3 (Medium)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.3 (Medium)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.3 (Medium)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.3 (Medium)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.8 (High)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.3 (Medium)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.8 (High)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
77 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for webkit2gtk3",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for webkit2gtk3 fixes the following issues:\n\nSecurity issues fixed:\n\n- CVE-2019-8673, CVE-2019-8678, CVE-2019-8686, CVE-2019-8683, CVE-2019-8671,\n CVE-2019-8595, CVE-2019-8684, CVE-2019-8681, CVE-2019-8615, CVE-2019-8689,\n CVE-2019-8680, CVE-2019-8672, CVE-2019-8676, CVE-2019-8666, CVE-2019-8644,\n CVE-2019-8658, CVE-2019-8690, CVE-2019-8688, CVE-2019-8649, CVE-2019-8679,\n CVE-2019-8687, CVE-2019-8669, CVE-2019-8677, CVE-2019-8607 (bsc#1148931).\n\nThis update was imported from the SUSE:SLE-15:Update update project.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-2019-2208",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2019_2208-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2019:2208-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/24QMYHAZS2AJE54DTAKCEMDKYJVLT7R7/#24QMYHAZS2AJE54DTAKCEMDKYJVLT7R7"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2019:2208-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/24QMYHAZS2AJE54DTAKCEMDKYJVLT7R7/#24QMYHAZS2AJE54DTAKCEMDKYJVLT7R7"
},
{
"category": "self",
"summary": "SUSE Bug 1148931",
"url": "https://bugzilla.suse.com/1148931"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8595 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8595/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8607 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8607/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8615 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8615/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8644 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8644/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8649 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8649/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8658 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8658/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8666 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8666/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8669 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8669/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8671 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8671/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8672 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8672/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8673 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8673/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8676 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8676/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8677 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8677/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8678 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8678/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8679 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8679/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8680 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8680/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8681 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8681/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8683 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8683/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8684 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8684/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8686 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8686/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8687 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8687/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8688 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8688/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8689 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8689/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8690 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8690/"
}
],
"title": "Security update for webkit2gtk3",
"tracking": {
"current_release_date": "2019-09-28T12:21:01Z",
"generator": {
"date": "2019-09-28T12:21:01Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2019:2208-1",
"initial_release_date": "2019-09-28T12:21:01Z",
"revision_history": [
{
"date": "2019-09-28T12:21:01Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"product": {
"name": "libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"product_id": "libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586"
}
},
{
"category": "product_version",
"name": "libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"product": {
"name": "libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"product_id": "libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586"
}
},
{
"category": "product_version",
"name": "typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"product": {
"name": "typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"product_id": "typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586"
}
},
{
"category": "product_version",
"name": "typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"product": {
"name": "typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"product_id": "typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586"
}
},
{
"category": "product_version",
"name": "typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"product": {
"name": "typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"product_id": "typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586"
}
},
{
"category": "product_version",
"name": "webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"product": {
"name": "webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"product_id": "webkit-jsc-4-2.24.4-lp151.2.6.1.i586"
}
},
{
"category": "product_version",
"name": "webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"product": {
"name": "webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"product_id": "webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586"
}
},
{
"category": "product_version",
"name": "webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"product": {
"name": "webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"product_id": "webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586"
}
},
{
"category": "product_version",
"name": "webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"product": {
"name": "webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"product_id": "webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586"
}
},
{
"category": "product_version",
"name": "webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"product": {
"name": "webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"product_id": "webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"product": {
"name": "libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"product_id": "libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"product": {
"name": "libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"product_id": "libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64"
}
},
{
"category": "product_version",
"name": "libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"product": {
"name": "libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"product_id": "libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"product": {
"name": "libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"product_id": "libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"product": {
"name": "libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"product_id": "libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64"
}
},
{
"category": "product_version",
"name": "typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"product": {
"name": "typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"product_id": "typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64"
}
},
{
"category": "product_version",
"name": "typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"product": {
"name": "typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"product_id": "typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64"
}
},
{
"category": "product_version",
"name": "typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"product": {
"name": "typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"product_id": "typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64"
}
},
{
"category": "product_version",
"name": "webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"product": {
"name": "webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"product_id": "webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64"
}
},
{
"category": "product_version",
"name": "webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"product": {
"name": "webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"product_id": "webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64"
}
},
{
"category": "product_version",
"name": "webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"product": {
"name": "webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"product_id": "webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64"
}
},
{
"category": "product_version",
"name": "webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"product": {
"name": "webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"product_id": "webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64"
}
},
{
"category": "product_version",
"name": "webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64",
"product": {
"name": "webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64",
"product_id": "webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.1",
"product": {
"name": "openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586"
},
"product_reference": "libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64"
},
"product_reference": "libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64"
},
"product_reference": "libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586"
},
"product_reference": "libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64"
},
"product_reference": "libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64"
},
"product_reference": "libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch"
},
"product_reference": "libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586"
},
"product_reference": "typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64"
},
"product_reference": "typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586"
},
"product_reference": "typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64"
},
"product_reference": "typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586"
},
"product_reference": "typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64"
},
"product_reference": "typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit-jsc-4-2.24.4-lp151.2.6.1.i586 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586"
},
"product_reference": "webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64"
},
"product_reference": "webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586"
},
"product_reference": "webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64"
},
"product_reference": "webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586"
},
"product_reference": "webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64"
},
"product_reference": "webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586"
},
"product_reference": "webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64"
},
"product_reference": "webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586"
},
"product_reference": "webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
},
"product_reference": "webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-8595",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8595"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8595",
"url": "https://www.suse.com/security/cve/CVE-2019-8595"
},
{
"category": "external",
"summary": "SUSE Bug 1135715 for CVE-2019-8595",
"url": "https://bugzilla.suse.com/1135715"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:21:01Z",
"details": "low"
}
],
"title": "CVE-2019-8595"
},
{
"cve": "CVE-2019-8607",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8607"
}
],
"notes": [
{
"category": "general",
"text": "An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may result in the disclosure of process memory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8607",
"url": "https://www.suse.com/security/cve/CVE-2019-8607"
},
{
"category": "external",
"summary": "SUSE Bug 1135715 for CVE-2019-8607",
"url": "https://bugzilla.suse.com/1135715"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.1,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:21:01Z",
"details": "low"
}
],
"title": "CVE-2019-8607"
},
{
"cve": "CVE-2019-8615",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8615"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8615",
"url": "https://www.suse.com/security/cve/CVE-2019-8615"
},
{
"category": "external",
"summary": "SUSE Bug 1135715 for CVE-2019-8615",
"url": "https://bugzilla.suse.com/1135715"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:21:01Z",
"details": "low"
}
],
"title": "CVE-2019-8615"
},
{
"cve": "CVE-2019-8644",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8644"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8644",
"url": "https://www.suse.com/security/cve/CVE-2019-8644"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8644",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:21:01Z",
"details": "moderate"
}
],
"title": "CVE-2019-8644"
},
{
"cve": "CVE-2019-8649",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8649"
}
],
"notes": [
{
"category": "general",
"text": "A logic issue existed in the handling of synchronous page loads. This issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to universal cross site scripting.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8649",
"url": "https://www.suse.com/security/cve/CVE-2019-8649"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8649",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:21:01Z",
"details": "moderate"
}
],
"title": "CVE-2019-8649"
},
{
"cve": "CVE-2019-8658",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8658"
}
],
"notes": [
{
"category": "general",
"text": "A logic issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to universal cross site scripting.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8658",
"url": "https://www.suse.com/security/cve/CVE-2019-8658"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8658",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:21:01Z",
"details": "moderate"
}
],
"title": "CVE-2019-8658"
},
{
"cve": "CVE-2019-8666",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8666"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8666",
"url": "https://www.suse.com/security/cve/CVE-2019-8666"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8666",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:21:01Z",
"details": "moderate"
}
],
"title": "CVE-2019-8666"
},
{
"cve": "CVE-2019-8669",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8669"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8669",
"url": "https://www.suse.com/security/cve/CVE-2019-8669"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8669",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:21:01Z",
"details": "moderate"
}
],
"title": "CVE-2019-8669"
},
{
"cve": "CVE-2019-8671",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8671"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8671",
"url": "https://www.suse.com/security/cve/CVE-2019-8671"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8671",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:21:01Z",
"details": "moderate"
}
],
"title": "CVE-2019-8671"
},
{
"cve": "CVE-2019-8672",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8672"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8672",
"url": "https://www.suse.com/security/cve/CVE-2019-8672"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8672",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:21:01Z",
"details": "moderate"
}
],
"title": "CVE-2019-8672"
},
{
"cve": "CVE-2019-8673",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8673"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8673",
"url": "https://www.suse.com/security/cve/CVE-2019-8673"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8673",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:21:01Z",
"details": "moderate"
}
],
"title": "CVE-2019-8673"
},
{
"cve": "CVE-2019-8676",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8676"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8676",
"url": "https://www.suse.com/security/cve/CVE-2019-8676"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8676",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:21:01Z",
"details": "moderate"
}
],
"title": "CVE-2019-8676"
},
{
"cve": "CVE-2019-8677",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8677"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8677",
"url": "https://www.suse.com/security/cve/CVE-2019-8677"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8677",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:21:01Z",
"details": "moderate"
}
],
"title": "CVE-2019-8677"
},
{
"cve": "CVE-2019-8678",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8678"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8678",
"url": "https://www.suse.com/security/cve/CVE-2019-8678"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8678",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:21:01Z",
"details": "moderate"
}
],
"title": "CVE-2019-8678"
},
{
"cve": "CVE-2019-8679",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8679"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8679",
"url": "https://www.suse.com/security/cve/CVE-2019-8679"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8679",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:21:01Z",
"details": "moderate"
}
],
"title": "CVE-2019-8679"
},
{
"cve": "CVE-2019-8680",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8680"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8680",
"url": "https://www.suse.com/security/cve/CVE-2019-8680"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8680",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:21:01Z",
"details": "moderate"
}
],
"title": "CVE-2019-8680"
},
{
"cve": "CVE-2019-8681",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8681"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8681",
"url": "https://www.suse.com/security/cve/CVE-2019-8681"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8681",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:21:01Z",
"details": "moderate"
}
],
"title": "CVE-2019-8681"
},
{
"cve": "CVE-2019-8683",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8683"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8683",
"url": "https://www.suse.com/security/cve/CVE-2019-8683"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8683",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:21:01Z",
"details": "moderate"
}
],
"title": "CVE-2019-8683"
},
{
"cve": "CVE-2019-8684",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8684"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8684",
"url": "https://www.suse.com/security/cve/CVE-2019-8684"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8684",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:21:01Z",
"details": "moderate"
}
],
"title": "CVE-2019-8684"
},
{
"cve": "CVE-2019-8686",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8686"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8686",
"url": "https://www.suse.com/security/cve/CVE-2019-8686"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8686",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:21:01Z",
"details": "moderate"
}
],
"title": "CVE-2019-8686"
},
{
"cve": "CVE-2019-8687",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8687"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8687",
"url": "https://www.suse.com/security/cve/CVE-2019-8687"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8687",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:21:01Z",
"details": "moderate"
}
],
"title": "CVE-2019-8687"
},
{
"cve": "CVE-2019-8688",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8688"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8688",
"url": "https://www.suse.com/security/cve/CVE-2019-8688"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8688",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:21:01Z",
"details": "moderate"
}
],
"title": "CVE-2019-8688"
},
{
"cve": "CVE-2019-8689",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8689"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8689",
"url": "https://www.suse.com/security/cve/CVE-2019-8689"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8689",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:21:01Z",
"details": "moderate"
}
],
"title": "CVE-2019-8689"
},
{
"cve": "CVE-2019-8690",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8690"
}
],
"notes": [
{
"category": "general",
"text": "A logic issue existed in the handling of document loads. This issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to universal cross site scripting.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8690",
"url": "https://www.suse.com/security/cve/CVE-2019-8690"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8690",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:libwebkit2gtk3-lang-2.24.4-lp151.2.6.1.noarch",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit-jsc-4-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-devel-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-minibrowser-2.24.4-lp151.2.6.1.x86_64",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.i586",
"openSUSE Leap 15.1:webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-28T12:21:01Z",
"details": "moderate"
}
],
"title": "CVE-2019-8690"
}
]
}
RHEA-2019:4262
Vulnerability from csaf_redhat - Published: 2019-12-17 13:02 - Updated: 2026-01-13 22:07Summary
Red Hat Enhancement Advisory: webkit2gtk3 enhancement update
Severity
Moderate
Notes
Topic: An updated webkit2gtk3 package that adds one enhancement is now available for Red Hat Enterprise Linux 8.
Details: This update adds the following enhancement:
* Update WebKitGTK to 2.24.4 (BZ#1755824).
Users of webkit2gtk3 are advised to upgrade to this updated package, which adds this enhancement.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.
8.8 (High)
Affected products
Fixed
52 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A logic issue existed in the handling of synchronous page loads. This issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to universal cross site scripting.
6.1 (Medium)
Affected products
Fixed
52 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A logic issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to universal cross site scripting.
6.1 (Medium)
Affected products
Fixed
52 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.
8.8 (High)
Affected products
Fixed
52 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A logic issue was addressed with improved state management. This issue is fixed in iOS 13, Safari 13. Processing maliciously crafted web content may lead to universal cross site scripting.
6.1 (Medium)
Affected products
Fixed
52 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.
8.8 (High)
Affected products
Fixed
52 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.
8.8 (High)
Affected products
Fixed
52 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.
8.8 (High)
Affected products
Fixed
52 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.
8.8 (High)
Affected products
Fixed
52 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.
8.8 (High)
Affected products
Fixed
52 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in tvOS 13, iTunes for Windows 12.10.1, iCloud for Windows 10.7, iCloud for Windows 7.14. Processing maliciously crafted web content may lead to arbitrary code execution.
8.8 (High)
Affected products
Fixed
52 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A logic issue was addressed with improved state management. This issue is fixed in tvOS 13, iTunes for Windows 12.10.1, iCloud for Windows 10.7, iCloud for Windows 7.14. Processing maliciously crafted web content may lead to universal cross site scripting.
6.1 (Medium)
Affected products
Fixed
52 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in tvOS 13, iTunes for Windows 12.10.1, iCloud for Windows 10.7, iCloud for Windows 7.14. Processing maliciously crafted web content may lead to arbitrary code execution.
8.8 (High)
Affected products
Fixed
52 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.1 and iPadOS 13.1, tvOS 13, Safari 13.0.1, iTunes for Windows 12.10.1, iCloud for Windows 10.7, iCloud for Windows 7.14. Processing maliciously crafted web content may lead to arbitrary code execution.
8.8 (High)
Affected products
Fixed
52 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in watchOS 6.1. Processing maliciously crafted web content may lead to arbitrary code execution.
8.8 (High)
Affected products
Fixed
52 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.2 and iPadOS 13.2, tvOS 13.2, Safari 13.0.3, iTunes for Windows 12.10.2, iCloud for Windows 11.0, iCloud for Windows 7.15. Processing maliciously crafted web content may lead to arbitrary code execution.
8.8 (High)
Affected products
Fixed
52 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.2 and iPadOS 13.2, tvOS 13.2, Safari 13.0.3, iTunes for Windows 12.10.2, iCloud for Windows 11.0, iCloud for Windows 7.15. Processing maliciously crafted web content may lead to arbitrary code execution.
8.8 (High)
Affected products
Fixed
52 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
References
74 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An updated webkit2gtk3 package that adds one enhancement is now available for Red Hat Enterprise Linux 8.",
"title": "Topic"
},
{
"category": "general",
"text": "This update adds the following enhancement:\n\n* Update WebKitGTK to 2.24.4 (BZ#1755824).\n\nUsers of webkit2gtk3 are advised to upgrade to this updated package, which adds this enhancement.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHEA-2019:4262",
"url": "https://access.redhat.com/errata/RHEA-2019:4262"
},
{
"category": "external",
"summary": "1755824",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1755824"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhea-2019_4262.json"
}
],
"title": "Red Hat Enhancement Advisory: webkit2gtk3 enhancement update",
"tracking": {
"current_release_date": "2026-01-13T22:07:51+00:00",
"generator": {
"date": "2026-01-13T22:07:51+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.15"
}
},
"id": "RHEA-2019:4262",
"initial_release_date": "2019-12-17T13:02:02+00:00",
"revision_history": [
{
"date": "2019-12-17T13:02:02+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2019-12-17T13:02:02+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-01-13T22:07:51+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "webkit2gtk3-0:2.24.4-2.el8_1.i686",
"product": {
"name": "webkit2gtk3-0:2.24.4-2.el8_1.i686",
"product_id": "webkit2gtk3-0:2.24.4-2.el8_1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3@2.24.4-2.el8_1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"product": {
"name": "webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"product_id": "webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.24.4-2.el8_1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"product": {
"name": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"product_id": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.24.4-2.el8_1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"product": {
"name": "webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"product_id": "webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.24.4-2.el8_1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"product": {
"name": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"product_id": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-plugin-process-gtk2@2.24.4-2.el8_1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"product": {
"name": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"product_id": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.24.4-2.el8_1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"product": {
"name": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"product_id": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.24.4-2.el8_1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"product": {
"name": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"product_id": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.24.4-2.el8_1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"product": {
"name": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"product_id": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.24.4-2.el8_1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"product": {
"name": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.24.4-2.el8_1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"product": {
"name": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"product_id": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-plugin-process-gtk2-debuginfo@2.24.4-2.el8_1?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"product": {
"name": "webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"product_id": "webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3@2.24.4-2.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"product": {
"name": "webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"product_id": "webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.24.4-2.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"product": {
"name": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"product_id": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.24.4-2.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"product": {
"name": "webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"product_id": "webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.24.4-2.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"product": {
"name": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"product_id": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-plugin-process-gtk2@2.24.4-2.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"product": {
"name": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"product_id": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.24.4-2.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"product": {
"name": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"product_id": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.24.4-2.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"product": {
"name": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"product_id": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.24.4-2.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"product": {
"name": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"product_id": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.24.4-2.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"product": {
"name": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.24.4-2.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64",
"product": {
"name": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64",
"product_id": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-plugin-process-gtk2-debuginfo@2.24.4-2.el8_1?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"product": {
"name": "webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"product_id": "webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3@2.24.4-2.el8_1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"product": {
"name": "webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"product_id": "webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.24.4-2.el8_1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"product": {
"name": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"product_id": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.24.4-2.el8_1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"product": {
"name": "webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"product_id": "webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.24.4-2.el8_1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"product": {
"name": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"product_id": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-plugin-process-gtk2@2.24.4-2.el8_1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"product": {
"name": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"product_id": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.24.4-2.el8_1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"product": {
"name": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"product_id": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.24.4-2.el8_1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"product": {
"name": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"product_id": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.24.4-2.el8_1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"product": {
"name": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"product_id": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.24.4-2.el8_1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"product": {
"name": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.24.4-2.el8_1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"product": {
"name": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"product_id": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-plugin-process-gtk2-debuginfo@2.24.4-2.el8_1?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"product": {
"name": "webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"product_id": "webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3@2.24.4-2.el8_1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"product": {
"name": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"product_id": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.24.4-2.el8_1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"product": {
"name": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"product_id": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-plugin-process-gtk2@2.24.4-2.el8_1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"product": {
"name": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"product_id": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.24.4-2.el8_1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"product": {
"name": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"product_id": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.24.4-2.el8_1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"product": {
"name": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"product_id": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.24.4-2.el8_1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"product": {
"name": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"product_id": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.24.4-2.el8_1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"product": {
"name": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.24.4-2.el8_1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"product": {
"name": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"product_id": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-plugin-process-gtk2-debuginfo@2.24.4-2.el8_1?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"product": {
"name": "webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"product_id": "webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3@2.24.4-2.el8_1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"product": {
"name": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"product_id": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.24.4-2.el8_1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"product": {
"name": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"product_id": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-plugin-process-gtk2@2.24.4-2.el8_1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"product": {
"name": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"product_id": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.24.4-2.el8_1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"product": {
"name": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"product_id": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.24.4-2.el8_1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"product": {
"name": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"product_id": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.24.4-2.el8_1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"product": {
"name": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"product_id": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.24.4-2.el8_1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"product": {
"name": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.24.4-2.el8_1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"product": {
"name": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"product_id": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-plugin-process-gtk2-debuginfo@2.24.4-2.el8_1?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "webkit2gtk3-0:2.24.4-2.el8_1.src",
"product": {
"name": "webkit2gtk3-0:2.24.4-2.el8_1.src",
"product_id": "webkit2gtk3-0:2.24.4-2.el8_1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3@2.24.4-2.el8_1?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-0:2.24.4-2.el8_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64"
},
"product_reference": "webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-0:2.24.4-2.el8_1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686"
},
"product_reference": "webkit2gtk3-0:2.24.4-2.el8_1.i686",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-0:2.24.4-2.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le"
},
"product_reference": "webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-0:2.24.4-2.el8_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x"
},
"product_reference": "webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-0:2.24.4-2.el8_1.src as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src"
},
"product_reference": "webkit2gtk3-0:2.24.4-2.el8_1.src",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-0:2.24.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64"
},
"product_reference": "webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64"
},
"product_reference": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686"
},
"product_reference": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le"
},
"product_reference": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x"
},
"product_reference": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64"
},
"product_reference": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64"
},
"product_reference": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686"
},
"product_reference": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le"
},
"product_reference": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x"
},
"product_reference": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64"
},
"product_reference": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-devel-0:2.24.4-2.el8_1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686"
},
"product_reference": "webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le"
},
"product_reference": "webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64"
},
"product_reference": "webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64"
},
"product_reference": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686"
},
"product_reference": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le"
},
"product_reference": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x"
},
"product_reference": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64"
},
"product_reference": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64"
},
"product_reference": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686"
},
"product_reference": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le"
},
"product_reference": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x"
},
"product_reference": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64"
},
"product_reference": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64"
},
"product_reference": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686"
},
"product_reference": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le"
},
"product_reference": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x"
},
"product_reference": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64"
},
"product_reference": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686"
},
"product_reference": "webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le"
},
"product_reference": "webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64"
},
"product_reference": "webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64"
},
"product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686"
},
"product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le"
},
"product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x"
},
"product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64"
},
"product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64"
},
"product_reference": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686"
},
"product_reference": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le"
},
"product_reference": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x"
},
"product_reference": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64"
},
"product_reference": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64"
},
"product_reference": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686"
},
"product_reference": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le"
},
"product_reference": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x"
},
"product_reference": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
},
"product_reference": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-8644",
"discovery_date": "2020-09-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1876626"
}
],
"notes": [
{
"category": "description",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-8644"
},
{
"category": "external",
"summary": "RHBZ#1876626",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1876626"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-8644",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8644"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-8644",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8644"
},
{
"category": "external",
"summary": "https://webkitgtk.org/security/WSA-2019-0004.html",
"url": "https://webkitgtk.org/security/WSA-2019-0004.html"
}
],
"release_date": "2019-08-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-12-17T13:02:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHEA-2019:4262"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution"
},
{
"cve": "CVE-2019-8649",
"discovery_date": "2020-09-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1876628"
}
],
"notes": [
{
"category": "description",
"text": "A logic issue existed in the handling of synchronous page loads. This issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to universal cross site scripting.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webkitgtk: Incorrect state management leading to universal cross-site scripting",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-8649"
},
{
"category": "external",
"summary": "RHBZ#1876628",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1876628"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-8649",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8649"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-8649",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8649"
},
{
"category": "external",
"summary": "https://webkitgtk.org/security/WSA-2019-0004.html",
"url": "https://webkitgtk.org/security/WSA-2019-0004.html"
}
],
"release_date": "2019-08-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-12-17T13:02:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHEA-2019:4262"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webkitgtk: Incorrect state management leading to universal cross-site scripting"
},
{
"cve": "CVE-2019-8658",
"discovery_date": "2020-09-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1876629"
}
],
"notes": [
{
"category": "description",
"text": "A logic issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to universal cross site scripting.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webkitgtk: Incorrect state management leading to universal cross-site scripting",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-8658"
},
{
"category": "external",
"summary": "RHBZ#1876629",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1876629"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-8658",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8658"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-8658",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8658"
},
{
"category": "external",
"summary": "https://webkitgtk.org/security/WSA-2019-0004.html",
"url": "https://webkitgtk.org/security/WSA-2019-0004.html"
}
],
"release_date": "2019-08-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-12-17T13:02:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHEA-2019:4262"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webkitgtk: Incorrect state management leading to universal cross-site scripting"
},
{
"cve": "CVE-2019-8669",
"discovery_date": "2020-09-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1876631"
}
],
"notes": [
{
"category": "description",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-8669"
},
{
"category": "external",
"summary": "RHBZ#1876631",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1876631"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-8669",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8669"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-8669",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8669"
},
{
"category": "external",
"summary": "https://webkitgtk.org/security/WSA-2019-0004.html",
"url": "https://webkitgtk.org/security/WSA-2019-0004.html"
}
],
"release_date": "2019-08-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-12-17T13:02:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHEA-2019:4262"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution"
},
{
"cve": "CVE-2019-8674",
"discovery_date": "2020-09-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1876608"
}
],
"notes": [
{
"category": "description",
"text": "A logic issue was addressed with improved state management. This issue is fixed in iOS 13, Safari 13. Processing maliciously crafted web content may lead to universal cross site scripting.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webkitgtk: Incorrect state management leading to universal cross-site scripting",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-8674"
},
{
"category": "external",
"summary": "RHBZ#1876608",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1876608"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-8674",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8674"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-8674",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8674"
},
{
"category": "external",
"summary": "https://webkitgtk.org/security/WSA-2019-0005.html",
"url": "https://webkitgtk.org/security/WSA-2019-0005.html"
}
],
"release_date": "2019-10-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-12-17T13:02:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHEA-2019:4262"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webkitgtk: Incorrect state management leading to universal cross-site scripting"
},
{
"cve": "CVE-2019-8678",
"discovery_date": "2020-09-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1876646"
}
],
"notes": [
{
"category": "description",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-8678"
},
{
"category": "external",
"summary": "RHBZ#1876646",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1876646"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-8678",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8678"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-8678",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8678"
},
{
"category": "external",
"summary": "https://webkitgtk.org/security/WSA-2019-0004.html",
"url": "https://webkitgtk.org/security/WSA-2019-0004.html"
}
],
"release_date": "2019-08-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-12-17T13:02:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHEA-2019:4262"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution"
},
{
"cve": "CVE-2019-8680",
"discovery_date": "2020-09-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1876648"
}
],
"notes": [
{
"category": "description",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-8680"
},
{
"category": "external",
"summary": "RHBZ#1876648",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1876648"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-8680",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8680"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-8680",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8680"
},
{
"category": "external",
"summary": "https://webkitgtk.org/security/WSA-2019-0004.html",
"url": "https://webkitgtk.org/security/WSA-2019-0004.html"
}
],
"release_date": "2019-08-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-12-17T13:02:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHEA-2019:4262"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution"
},
{
"cve": "CVE-2019-8683",
"discovery_date": "2020-09-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1876651"
}
],
"notes": [
{
"category": "description",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-8683"
},
{
"category": "external",
"summary": "RHBZ#1876651",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1876651"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-8683",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8683"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-8683",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8683"
},
{
"category": "external",
"summary": "https://webkitgtk.org/security/WSA-2019-0004.html",
"url": "https://webkitgtk.org/security/WSA-2019-0004.html"
}
],
"release_date": "2019-08-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-12-17T13:02:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHEA-2019:4262"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution"
},
{
"cve": "CVE-2019-8684",
"discovery_date": "2020-09-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1876652"
}
],
"notes": [
{
"category": "description",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-8684"
},
{
"category": "external",
"summary": "RHBZ#1876652",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1876652"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-8684",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8684"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-8684",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8684"
},
{
"category": "external",
"summary": "https://webkitgtk.org/security/WSA-2019-0004.html",
"url": "https://webkitgtk.org/security/WSA-2019-0004.html"
}
],
"release_date": "2019-08-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-12-17T13:02:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHEA-2019:4262"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution"
},
{
"cve": "CVE-2019-8688",
"discovery_date": "2020-09-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1876656"
}
],
"notes": [
{
"category": "description",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-8688"
},
{
"category": "external",
"summary": "RHBZ#1876656",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1876656"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-8688",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8688"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-8688",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8688"
},
{
"category": "external",
"summary": "https://webkitgtk.org/security/WSA-2019-0004.html",
"url": "https://webkitgtk.org/security/WSA-2019-0004.html"
}
],
"release_date": "2019-08-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-12-17T13:02:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHEA-2019:4262"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution"
},
{
"cve": "CVE-2019-8707",
"discovery_date": "2020-09-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1876609"
}
],
"notes": [
{
"category": "description",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in tvOS 13, iTunes for Windows 12.10.1, iCloud for Windows 10.7, iCloud for Windows 7.14. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-8707"
},
{
"category": "external",
"summary": "RHBZ#1876609",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1876609"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-8707",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8707"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-8707",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8707"
},
{
"category": "external",
"summary": "https://webkitgtk.org/security/WSA-2019-0005.html",
"url": "https://webkitgtk.org/security/WSA-2019-0005.html"
}
],
"release_date": "2019-10-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-12-17T13:02:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHEA-2019:4262"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution"
},
{
"cve": "CVE-2019-8719",
"discovery_date": "2020-09-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1876610"
}
],
"notes": [
{
"category": "description",
"text": "A logic issue was addressed with improved state management. This issue is fixed in tvOS 13, iTunes for Windows 12.10.1, iCloud for Windows 10.7, iCloud for Windows 7.14. Processing maliciously crafted web content may lead to universal cross site scripting.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webkitgtk: Incorrect state management leading to universal cross-site scripting",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-8719"
},
{
"category": "external",
"summary": "RHBZ#1876610",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1876610"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-8719",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8719"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-8719",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8719"
},
{
"category": "external",
"summary": "https://webkitgtk.org/security/WSA-2019-0005.html",
"url": "https://webkitgtk.org/security/WSA-2019-0005.html"
}
],
"release_date": "2019-10-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-12-17T13:02:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHEA-2019:4262"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webkitgtk: Incorrect state management leading to universal cross-site scripting"
},
{
"cve": "CVE-2019-8733",
"discovery_date": "2020-09-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1876613"
}
],
"notes": [
{
"category": "description",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in tvOS 13, iTunes for Windows 12.10.1, iCloud for Windows 10.7, iCloud for Windows 7.14. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-8733"
},
{
"category": "external",
"summary": "RHBZ#1876613",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1876613"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-8733",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8733"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-8733",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8733"
},
{
"category": "external",
"summary": "https://webkitgtk.org/security/WSA-2019-0005.html",
"url": "https://webkitgtk.org/security/WSA-2019-0005.html"
}
],
"release_date": "2019-10-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-12-17T13:02:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHEA-2019:4262"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution"
},
{
"cve": "CVE-2019-8763",
"discovery_date": "2020-09-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1876615"
}
],
"notes": [
{
"category": "description",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.1 and iPadOS 13.1, tvOS 13, Safari 13.0.1, iTunes for Windows 12.10.1, iCloud for Windows 10.7, iCloud for Windows 7.14. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-8763"
},
{
"category": "external",
"summary": "RHBZ#1876615",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1876615"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-8763",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8763"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-8763",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8763"
},
{
"category": "external",
"summary": "https://webkitgtk.org/security/WSA-2019-0005.html",
"url": "https://webkitgtk.org/security/WSA-2019-0005.html"
}
],
"release_date": "2019-10-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-12-17T13:02:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHEA-2019:4262"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution"
},
{
"cve": "CVE-2019-8765",
"discovery_date": "2020-09-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1876542"
}
],
"notes": [
{
"category": "description",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in watchOS 6.1. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-8765"
},
{
"category": "external",
"summary": "RHBZ#1876542",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1876542"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-8765",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8765"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-8765",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8765"
},
{
"category": "external",
"summary": "https://webkitgtk.org/security/WSA-2019-0006.html",
"url": "https://webkitgtk.org/security/WSA-2019-0006.html"
}
],
"release_date": "2019-11-08T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-12-17T13:02:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHEA-2019:4262"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution"
},
{
"cve": "CVE-2019-8821",
"discovery_date": "2020-09-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1876592"
}
],
"notes": [
{
"category": "description",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.2 and iPadOS 13.2, tvOS 13.2, Safari 13.0.3, iTunes for Windows 12.10.2, iCloud for Windows 11.0, iCloud for Windows 7.15. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-8821"
},
{
"category": "external",
"summary": "RHBZ#1876592",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1876592"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-8821",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8821"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-8821",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8821"
},
{
"category": "external",
"summary": "https://webkitgtk.org/security/WSA-2019-0006.html",
"url": "https://webkitgtk.org/security/WSA-2019-0006.html"
}
],
"release_date": "2019-11-08T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-12-17T13:02:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHEA-2019:4262"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution"
},
{
"cve": "CVE-2019-8822",
"discovery_date": "2020-09-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1876593"
}
],
"notes": [
{
"category": "description",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.2 and iPadOS 13.2, tvOS 13.2, Safari 13.0.3, iTunes for Windows 12.10.2, iCloud for Windows 11.0, iCloud for Windows 7.15. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-8822"
},
{
"category": "external",
"summary": "RHBZ#1876593",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1876593"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-8822",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8822"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-8822",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8822"
},
{
"category": "external",
"summary": "https://webkitgtk.org/security/WSA-2019-0006.html",
"url": "https://webkitgtk.org/security/WSA-2019-0006.html"
}
],
"release_date": "2019-11-08T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-12-17T13:02:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHEA-2019:4262"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution"
}
]
}
RHEA-2019_4262
Vulnerability from csaf_redhat - Published: 2019-12-17 13:02 - Updated: 2024-11-22 13:59Summary
Red Hat Enhancement Advisory: webkit2gtk3 enhancement update
Severity
Moderate
Notes
Topic: An updated webkit2gtk3 package that adds one enhancement is now available for Red Hat Enterprise Linux 8.
Details: This update adds the following enhancement:
* Update WebKitGTK to 2.24.4 (BZ#1755824).
Users of webkit2gtk3 are advised to upgrade to this updated package, which adds this enhancement.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.
8.8 (High)
Affected products
Fixed
52 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A logic issue existed in the handling of synchronous page loads. This issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to universal cross site scripting.
6.1 (Medium)
Affected products
Fixed
52 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A logic issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to universal cross site scripting.
6.1 (Medium)
Affected products
Fixed
52 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.
8.8 (High)
Affected products
Fixed
52 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A logic issue was addressed with improved state management. This issue is fixed in iOS 13, Safari 13. Processing maliciously crafted web content may lead to universal cross site scripting.
6.1 (Medium)
Affected products
Fixed
52 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.
8.8 (High)
Affected products
Fixed
52 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.
8.8 (High)
Affected products
Fixed
52 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.
8.8 (High)
Affected products
Fixed
52 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.
8.8 (High)
Affected products
Fixed
52 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.
8.8 (High)
Affected products
Fixed
52 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in tvOS 13, iTunes for Windows 12.10.1, iCloud for Windows 10.7, iCloud for Windows 7.14. Processing maliciously crafted web content may lead to arbitrary code execution.
8.8 (High)
Affected products
Fixed
52 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A logic issue was addressed with improved state management. This issue is fixed in tvOS 13, iTunes for Windows 12.10.1, iCloud for Windows 10.7, iCloud for Windows 7.14. Processing maliciously crafted web content may lead to universal cross site scripting.
6.1 (Medium)
Affected products
Fixed
52 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in tvOS 13, iTunes for Windows 12.10.1, iCloud for Windows 10.7, iCloud for Windows 7.14. Processing maliciously crafted web content may lead to arbitrary code execution.
8.8 (High)
Affected products
Fixed
52 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.1 and iPadOS 13.1, tvOS 13, Safari 13.0.1, iTunes for Windows 12.10.1, iCloud for Windows 10.7, iCloud for Windows 7.14. Processing maliciously crafted web content may lead to arbitrary code execution.
8.8 (High)
Affected products
Fixed
52 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in watchOS 6.1. Processing maliciously crafted web content may lead to arbitrary code execution.
8.8 (High)
Affected products
Fixed
52 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.2 and iPadOS 13.2, tvOS 13.2, Safari 13.0.3, iTunes for Windows 12.10.2, iCloud for Windows 11.0, iCloud for Windows 7.15. Processing maliciously crafted web content may lead to arbitrary code execution.
8.8 (High)
Affected products
Fixed
52 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.2 and iPadOS 13.2, tvOS 13.2, Safari 13.0.3, iTunes for Windows 12.10.2, iCloud for Windows 11.0, iCloud for Windows 7.15. Processing maliciously crafted web content may lead to arbitrary code execution.
8.8 (High)
Affected products
Fixed
52 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
References
74 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An updated webkit2gtk3 package that adds one enhancement is now available for Red Hat Enterprise Linux 8.",
"title": "Topic"
},
{
"category": "general",
"text": "This update adds the following enhancement:\n\n* Update WebKitGTK to 2.24.4 (BZ#1755824).\n\nUsers of webkit2gtk3 are advised to upgrade to this updated package, which adds this enhancement.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHEA-2019:4262",
"url": "https://access.redhat.com/errata/RHEA-2019:4262"
},
{
"category": "external",
"summary": "1755824",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1755824"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhea-2019_4262.json"
}
],
"title": "Red Hat Enhancement Advisory: webkit2gtk3 enhancement update",
"tracking": {
"current_release_date": "2024-11-22T13:59:08+00:00",
"generator": {
"date": "2024-11-22T13:59:08+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHEA-2019:4262",
"initial_release_date": "2019-12-17T13:02:02+00:00",
"revision_history": [
{
"date": "2019-12-17T13:02:02+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2019-12-17T13:02:02+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T13:59:08+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "webkit2gtk3-0:2.24.4-2.el8_1.i686",
"product": {
"name": "webkit2gtk3-0:2.24.4-2.el8_1.i686",
"product_id": "webkit2gtk3-0:2.24.4-2.el8_1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3@2.24.4-2.el8_1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"product": {
"name": "webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"product_id": "webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.24.4-2.el8_1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"product": {
"name": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"product_id": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.24.4-2.el8_1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"product": {
"name": "webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"product_id": "webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.24.4-2.el8_1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"product": {
"name": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"product_id": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-plugin-process-gtk2@2.24.4-2.el8_1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"product": {
"name": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"product_id": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.24.4-2.el8_1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"product": {
"name": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"product_id": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.24.4-2.el8_1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"product": {
"name": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"product_id": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.24.4-2.el8_1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"product": {
"name": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"product_id": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.24.4-2.el8_1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"product": {
"name": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.24.4-2.el8_1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"product": {
"name": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"product_id": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-plugin-process-gtk2-debuginfo@2.24.4-2.el8_1?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"product": {
"name": "webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"product_id": "webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3@2.24.4-2.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"product": {
"name": "webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"product_id": "webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.24.4-2.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"product": {
"name": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"product_id": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.24.4-2.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"product": {
"name": "webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"product_id": "webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.24.4-2.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"product": {
"name": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"product_id": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-plugin-process-gtk2@2.24.4-2.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"product": {
"name": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"product_id": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.24.4-2.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"product": {
"name": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"product_id": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.24.4-2.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"product": {
"name": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"product_id": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.24.4-2.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"product": {
"name": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"product_id": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.24.4-2.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"product": {
"name": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.24.4-2.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64",
"product": {
"name": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64",
"product_id": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-plugin-process-gtk2-debuginfo@2.24.4-2.el8_1?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"product": {
"name": "webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"product_id": "webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3@2.24.4-2.el8_1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"product": {
"name": "webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"product_id": "webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.24.4-2.el8_1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"product": {
"name": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"product_id": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.24.4-2.el8_1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"product": {
"name": "webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"product_id": "webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.24.4-2.el8_1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"product": {
"name": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"product_id": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-plugin-process-gtk2@2.24.4-2.el8_1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"product": {
"name": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"product_id": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.24.4-2.el8_1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"product": {
"name": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"product_id": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.24.4-2.el8_1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"product": {
"name": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"product_id": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.24.4-2.el8_1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"product": {
"name": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"product_id": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.24.4-2.el8_1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"product": {
"name": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.24.4-2.el8_1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"product": {
"name": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"product_id": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-plugin-process-gtk2-debuginfo@2.24.4-2.el8_1?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"product": {
"name": "webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"product_id": "webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3@2.24.4-2.el8_1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"product": {
"name": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"product_id": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.24.4-2.el8_1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"product": {
"name": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"product_id": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-plugin-process-gtk2@2.24.4-2.el8_1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"product": {
"name": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"product_id": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.24.4-2.el8_1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"product": {
"name": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"product_id": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.24.4-2.el8_1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"product": {
"name": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"product_id": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.24.4-2.el8_1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"product": {
"name": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"product_id": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.24.4-2.el8_1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"product": {
"name": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.24.4-2.el8_1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"product": {
"name": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"product_id": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-plugin-process-gtk2-debuginfo@2.24.4-2.el8_1?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"product": {
"name": "webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"product_id": "webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3@2.24.4-2.el8_1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"product": {
"name": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"product_id": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.24.4-2.el8_1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"product": {
"name": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"product_id": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-plugin-process-gtk2@2.24.4-2.el8_1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"product": {
"name": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"product_id": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.24.4-2.el8_1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"product": {
"name": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"product_id": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.24.4-2.el8_1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"product": {
"name": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"product_id": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.24.4-2.el8_1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"product": {
"name": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"product_id": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.24.4-2.el8_1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"product": {
"name": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.24.4-2.el8_1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"product": {
"name": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"product_id": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3-plugin-process-gtk2-debuginfo@2.24.4-2.el8_1?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "webkit2gtk3-0:2.24.4-2.el8_1.src",
"product": {
"name": "webkit2gtk3-0:2.24.4-2.el8_1.src",
"product_id": "webkit2gtk3-0:2.24.4-2.el8_1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/webkit2gtk3@2.24.4-2.el8_1?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-0:2.24.4-2.el8_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64"
},
"product_reference": "webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-0:2.24.4-2.el8_1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686"
},
"product_reference": "webkit2gtk3-0:2.24.4-2.el8_1.i686",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-0:2.24.4-2.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le"
},
"product_reference": "webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-0:2.24.4-2.el8_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x"
},
"product_reference": "webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-0:2.24.4-2.el8_1.src as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src"
},
"product_reference": "webkit2gtk3-0:2.24.4-2.el8_1.src",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-0:2.24.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64"
},
"product_reference": "webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64"
},
"product_reference": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686"
},
"product_reference": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le"
},
"product_reference": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x"
},
"product_reference": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64"
},
"product_reference": "webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64"
},
"product_reference": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686"
},
"product_reference": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le"
},
"product_reference": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x"
},
"product_reference": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64"
},
"product_reference": "webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-devel-0:2.24.4-2.el8_1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686"
},
"product_reference": "webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le"
},
"product_reference": "webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64"
},
"product_reference": "webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64"
},
"product_reference": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686"
},
"product_reference": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le"
},
"product_reference": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x"
},
"product_reference": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64"
},
"product_reference": "webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64"
},
"product_reference": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686"
},
"product_reference": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le"
},
"product_reference": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x"
},
"product_reference": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64"
},
"product_reference": "webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64"
},
"product_reference": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686"
},
"product_reference": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le"
},
"product_reference": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x"
},
"product_reference": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64"
},
"product_reference": "webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686"
},
"product_reference": "webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le"
},
"product_reference": "webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64"
},
"product_reference": "webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64"
},
"product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686"
},
"product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le"
},
"product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x"
},
"product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64"
},
"product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64"
},
"product_reference": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686"
},
"product_reference": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le"
},
"product_reference": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x"
},
"product_reference": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64"
},
"product_reference": "webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64"
},
"product_reference": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686"
},
"product_reference": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le"
},
"product_reference": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x"
},
"product_reference": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
},
"product_reference": "webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-8644",
"discovery_date": "2020-09-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1876626"
}
],
"notes": [
{
"category": "description",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-8644"
},
{
"category": "external",
"summary": "RHBZ#1876626",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1876626"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-8644",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8644"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-8644",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8644"
},
{
"category": "external",
"summary": "https://webkitgtk.org/security/WSA-2019-0004.html",
"url": "https://webkitgtk.org/security/WSA-2019-0004.html"
}
],
"release_date": "2019-08-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-12-17T13:02:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHEA-2019:4262"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution"
},
{
"cve": "CVE-2019-8649",
"discovery_date": "2020-09-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1876628"
}
],
"notes": [
{
"category": "description",
"text": "A logic issue existed in the handling of synchronous page loads. This issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to universal cross site scripting.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webkitgtk: Incorrect state management leading to universal cross-site scripting",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-8649"
},
{
"category": "external",
"summary": "RHBZ#1876628",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1876628"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-8649",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8649"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-8649",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8649"
},
{
"category": "external",
"summary": "https://webkitgtk.org/security/WSA-2019-0004.html",
"url": "https://webkitgtk.org/security/WSA-2019-0004.html"
}
],
"release_date": "2019-08-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-12-17T13:02:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHEA-2019:4262"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webkitgtk: Incorrect state management leading to universal cross-site scripting"
},
{
"cve": "CVE-2019-8658",
"discovery_date": "2020-09-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1876629"
}
],
"notes": [
{
"category": "description",
"text": "A logic issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to universal cross site scripting.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webkitgtk: Incorrect state management leading to universal cross-site scripting",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-8658"
},
{
"category": "external",
"summary": "RHBZ#1876629",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1876629"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-8658",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8658"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-8658",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8658"
},
{
"category": "external",
"summary": "https://webkitgtk.org/security/WSA-2019-0004.html",
"url": "https://webkitgtk.org/security/WSA-2019-0004.html"
}
],
"release_date": "2019-08-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-12-17T13:02:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHEA-2019:4262"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webkitgtk: Incorrect state management leading to universal cross-site scripting"
},
{
"cve": "CVE-2019-8669",
"discovery_date": "2020-09-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1876631"
}
],
"notes": [
{
"category": "description",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-8669"
},
{
"category": "external",
"summary": "RHBZ#1876631",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1876631"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-8669",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8669"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-8669",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8669"
},
{
"category": "external",
"summary": "https://webkitgtk.org/security/WSA-2019-0004.html",
"url": "https://webkitgtk.org/security/WSA-2019-0004.html"
}
],
"release_date": "2019-08-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-12-17T13:02:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHEA-2019:4262"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution"
},
{
"cve": "CVE-2019-8674",
"discovery_date": "2020-09-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1876608"
}
],
"notes": [
{
"category": "description",
"text": "A logic issue was addressed with improved state management. This issue is fixed in iOS 13, Safari 13. Processing maliciously crafted web content may lead to universal cross site scripting.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webkitgtk: Incorrect state management leading to universal cross-site scripting",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-8674"
},
{
"category": "external",
"summary": "RHBZ#1876608",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1876608"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-8674",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8674"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-8674",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8674"
},
{
"category": "external",
"summary": "https://webkitgtk.org/security/WSA-2019-0005.html",
"url": "https://webkitgtk.org/security/WSA-2019-0005.html"
}
],
"release_date": "2019-10-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-12-17T13:02:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHEA-2019:4262"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webkitgtk: Incorrect state management leading to universal cross-site scripting"
},
{
"cve": "CVE-2019-8678",
"discovery_date": "2020-09-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1876646"
}
],
"notes": [
{
"category": "description",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-8678"
},
{
"category": "external",
"summary": "RHBZ#1876646",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1876646"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-8678",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8678"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-8678",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8678"
},
{
"category": "external",
"summary": "https://webkitgtk.org/security/WSA-2019-0004.html",
"url": "https://webkitgtk.org/security/WSA-2019-0004.html"
}
],
"release_date": "2019-08-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-12-17T13:02:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHEA-2019:4262"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution"
},
{
"cve": "CVE-2019-8680",
"discovery_date": "2020-09-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1876648"
}
],
"notes": [
{
"category": "description",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-8680"
},
{
"category": "external",
"summary": "RHBZ#1876648",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1876648"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-8680",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8680"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-8680",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8680"
},
{
"category": "external",
"summary": "https://webkitgtk.org/security/WSA-2019-0004.html",
"url": "https://webkitgtk.org/security/WSA-2019-0004.html"
}
],
"release_date": "2019-08-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-12-17T13:02:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHEA-2019:4262"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution"
},
{
"cve": "CVE-2019-8683",
"discovery_date": "2020-09-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1876651"
}
],
"notes": [
{
"category": "description",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-8683"
},
{
"category": "external",
"summary": "RHBZ#1876651",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1876651"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-8683",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8683"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-8683",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8683"
},
{
"category": "external",
"summary": "https://webkitgtk.org/security/WSA-2019-0004.html",
"url": "https://webkitgtk.org/security/WSA-2019-0004.html"
}
],
"release_date": "2019-08-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-12-17T13:02:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHEA-2019:4262"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution"
},
{
"cve": "CVE-2019-8684",
"discovery_date": "2020-09-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1876652"
}
],
"notes": [
{
"category": "description",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-8684"
},
{
"category": "external",
"summary": "RHBZ#1876652",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1876652"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-8684",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8684"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-8684",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8684"
},
{
"category": "external",
"summary": "https://webkitgtk.org/security/WSA-2019-0004.html",
"url": "https://webkitgtk.org/security/WSA-2019-0004.html"
}
],
"release_date": "2019-08-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-12-17T13:02:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHEA-2019:4262"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution"
},
{
"cve": "CVE-2019-8688",
"discovery_date": "2020-09-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1876656"
}
],
"notes": [
{
"category": "description",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-8688"
},
{
"category": "external",
"summary": "RHBZ#1876656",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1876656"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-8688",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8688"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-8688",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8688"
},
{
"category": "external",
"summary": "https://webkitgtk.org/security/WSA-2019-0004.html",
"url": "https://webkitgtk.org/security/WSA-2019-0004.html"
}
],
"release_date": "2019-08-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-12-17T13:02:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHEA-2019:4262"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution"
},
{
"cve": "CVE-2019-8707",
"discovery_date": "2020-09-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1876609"
}
],
"notes": [
{
"category": "description",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in tvOS 13, iTunes for Windows 12.10.1, iCloud for Windows 10.7, iCloud for Windows 7.14. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-8707"
},
{
"category": "external",
"summary": "RHBZ#1876609",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1876609"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-8707",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8707"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-8707",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8707"
},
{
"category": "external",
"summary": "https://webkitgtk.org/security/WSA-2019-0005.html",
"url": "https://webkitgtk.org/security/WSA-2019-0005.html"
}
],
"release_date": "2019-10-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-12-17T13:02:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHEA-2019:4262"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution"
},
{
"cve": "CVE-2019-8719",
"discovery_date": "2020-09-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1876610"
}
],
"notes": [
{
"category": "description",
"text": "A logic issue was addressed with improved state management. This issue is fixed in tvOS 13, iTunes for Windows 12.10.1, iCloud for Windows 10.7, iCloud for Windows 7.14. Processing maliciously crafted web content may lead to universal cross site scripting.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webkitgtk: Incorrect state management leading to universal cross-site scripting",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-8719"
},
{
"category": "external",
"summary": "RHBZ#1876610",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1876610"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-8719",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8719"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-8719",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8719"
},
{
"category": "external",
"summary": "https://webkitgtk.org/security/WSA-2019-0005.html",
"url": "https://webkitgtk.org/security/WSA-2019-0005.html"
}
],
"release_date": "2019-10-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-12-17T13:02:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHEA-2019:4262"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webkitgtk: Incorrect state management leading to universal cross-site scripting"
},
{
"cve": "CVE-2019-8733",
"discovery_date": "2020-09-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1876613"
}
],
"notes": [
{
"category": "description",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in tvOS 13, iTunes for Windows 12.10.1, iCloud for Windows 10.7, iCloud for Windows 7.14. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-8733"
},
{
"category": "external",
"summary": "RHBZ#1876613",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1876613"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-8733",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8733"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-8733",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8733"
},
{
"category": "external",
"summary": "https://webkitgtk.org/security/WSA-2019-0005.html",
"url": "https://webkitgtk.org/security/WSA-2019-0005.html"
}
],
"release_date": "2019-10-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-12-17T13:02:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHEA-2019:4262"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution"
},
{
"cve": "CVE-2019-8763",
"discovery_date": "2020-09-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1876615"
}
],
"notes": [
{
"category": "description",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.1 and iPadOS 13.1, tvOS 13, Safari 13.0.1, iTunes for Windows 12.10.1, iCloud for Windows 10.7, iCloud for Windows 7.14. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-8763"
},
{
"category": "external",
"summary": "RHBZ#1876615",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1876615"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-8763",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8763"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-8763",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8763"
},
{
"category": "external",
"summary": "https://webkitgtk.org/security/WSA-2019-0005.html",
"url": "https://webkitgtk.org/security/WSA-2019-0005.html"
}
],
"release_date": "2019-10-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-12-17T13:02:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHEA-2019:4262"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution"
},
{
"cve": "CVE-2019-8765",
"discovery_date": "2020-09-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1876542"
}
],
"notes": [
{
"category": "description",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in watchOS 6.1. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-8765"
},
{
"category": "external",
"summary": "RHBZ#1876542",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1876542"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-8765",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8765"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-8765",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8765"
},
{
"category": "external",
"summary": "https://webkitgtk.org/security/WSA-2019-0006.html",
"url": "https://webkitgtk.org/security/WSA-2019-0006.html"
}
],
"release_date": "2019-11-08T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-12-17T13:02:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHEA-2019:4262"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution"
},
{
"cve": "CVE-2019-8821",
"discovery_date": "2020-09-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1876592"
}
],
"notes": [
{
"category": "description",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.2 and iPadOS 13.2, tvOS 13.2, Safari 13.0.3, iTunes for Windows 12.10.2, iCloud for Windows 11.0, iCloud for Windows 7.15. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-8821"
},
{
"category": "external",
"summary": "RHBZ#1876592",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1876592"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-8821",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8821"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-8821",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8821"
},
{
"category": "external",
"summary": "https://webkitgtk.org/security/WSA-2019-0006.html",
"url": "https://webkitgtk.org/security/WSA-2019-0006.html"
}
],
"release_date": "2019-11-08T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-12-17T13:02:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHEA-2019:4262"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution"
},
{
"cve": "CVE-2019-8822",
"discovery_date": "2020-09-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1876593"
}
],
"notes": [
{
"category": "description",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.2 and iPadOS 13.2, tvOS 13.2, Safari 13.0.3, iTunes for Windows 12.10.2, iCloud for Windows 11.0, iCloud for Windows 7.15. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-8822"
},
{
"category": "external",
"summary": "RHBZ#1876593",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1876593"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-8822",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8822"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-8822",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8822"
},
{
"category": "external",
"summary": "https://webkitgtk.org/security/WSA-2019-0006.html",
"url": "https://webkitgtk.org/security/WSA-2019-0006.html"
}
],
"release_date": "2019-11-08T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-12-17T13:02:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHEA-2019:4262"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.i686",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webkitgtk: Multiple memory corruption issues leading to arbitrary code execution"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…