Summary: | <net-libs/webkit-gtk-2.26.4: multiple vulnerabilities | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Agostino Sarubbo <ago> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | gnome, ovi |
Priority: | Normal | Flags: | stable-bot:
sanity-check+
|
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | A3 [glsa+ cve] | ||
Package list: |
gui-libs/libwpe-1.4.0.1
gui-libs/wpebackend-fdo-1.4.0
sys-apps/xdg-dbus-proxy-0.1.2
net-libs/webkit-gtk-2.26.4
|
Runtime testing required: | --- |
Description
Agostino Sarubbo
2020-02-14 14:25:31 UTC
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=fb2dcb0fecee802258e1501ef657f6de2a4c99a0 commit fb2dcb0fecee802258e1501ef657f6de2a4c99a0 Author: Mart Raudsepp <leio@gentoo.org> AuthorDate: 2020-02-14 22:14:37 +0000 Commit: Mart Raudsepp <leio@gentoo.org> CommitDate: 2020-02-14 22:14:54 +0000 net-libs/webkit-gtk: security bump to 2.26.4 -r0 is for fast security stabling, -r1 is the enchant:2 ensuring revision. Bug: https://bugs.gentoo.org/709612 Package-Manager: Portage-2.3.84, Repoman-2.3.20 Signed-off-by: Mart Raudsepp <leio@gentoo.org> net-libs/webkit-gtk/Manifest | 1 + net-libs/webkit-gtk/webkit-gtk-2.26.4-r1.ebuild | 286 ++++++++++++++++++++++++ net-libs/webkit-gtk/webkit-gtk-2.26.4.ebuild | 286 ++++++++++++++++++++++++ 3 files changed, 573 insertions(+) amd64 stable x86 stable The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=a0f61be8a83c5fb4c088d60a8bf0acaaa27ac3bb commit a0f61be8a83c5fb4c088d60a8bf0acaaa27ac3bb Author: Mart Raudsepp <leio@gentoo.org> AuthorDate: 2020-02-17 21:38:08 +0000 Commit: Mart Raudsepp <leio@gentoo.org> CommitDate: 2020-02-17 21:53:22 +0000 net-libs/webkit-gtk: security cleanup Bug: https://bugs.gentoo.org/709612 Package-Manager: Portage-2.3.84, Repoman-2.3.20 Signed-off-by: Mart Raudsepp <leio@gentoo.org> net-libs/webkit-gtk/Manifest | 1 - .../files/2.26.3-fix-noGL-wayland-build.patch | 39 --- net-libs/webkit-gtk/webkit-gtk-2.26.3-r1.ebuild | 287 --------------------- net-libs/webkit-gtk/webkit-gtk-2.26.3.ebuild | 287 --------------------- 4 files changed, 614 deletions(-) There is a new CVE within this version which has been fixed upstream/trunk (commited), but is not yet in the source package. CVE-2020-10018 accessibility/AXObjectCache.cpp in WebKit, as used in WebKitGTK through 2.26.4 and WPE WebKit through 2.26.4, allows a denial of service (application crash) because maintenance of the m_deferredFocusedNodeChange data structure mishandles removal. https://bugs.webkit.org/show_bug.cgi?id=204342 https://trac.webkit.org/changeset/25729 The bug details are restricted even with an account (at least for me). CVE-2020-10018 changeset https://trac.webkit.org/changeset/257292 If 2.26.4 doesn't cover it, then file a new bug, this one as part of this security bug has already been handled on most arches. (In reply to Mart Raudsepp from comment #7) > If 2.26.4 doesn't cover it, then file a new bug, this one as part of this > security bug has already been handled on most arches. It doesn't: reported as bug 712260 The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=35abfda017fa69012bb8f7c768ed24d9b343c281 commit 35abfda017fa69012bb8f7c768ed24d9b343c281 Author: Mart Raudsepp <leio@gentoo.org> AuthorDate: 2020-03-12 20:08:03 +0000 Commit: Mart Raudsepp <leio@gentoo.org> CommitDate: 2020-03-12 20:08:03 +0000 net-libs/webkit-gtk: security cleanup to the extent possible Vulnerable versions only in ~arch versions now due to lack of movement on many architectures on re-keywording Bug: https://bugs.gentoo.org/709612 Package-Manager: Portage-2.3.84, Repoman-2.3.20 Signed-off-by: Mart Raudsepp <leio@gentoo.org> net-libs/webkit-gtk/webkit-gtk-2.24.4.ebuild | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) arm64 stable. Cleanup can't be done further due to bug 704182 New GLSA request filed. This issue was resolved and addressed in GLSA 202003-22 at https://security.gentoo.org/glsa/202003-22 by GLSA coordinator Thomas Deutschmann (whissi). |