Summary: | <net-libs/webkit-gtk-2.36.3: Multiple vulnerabilities | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Sam James <sam> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | major | ||
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://webkitgtk.org/security/WSA-2022-0005.html | ||
Whiteboard: | A2 [glsa+] | ||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | 851948 | ||
Bug Blocks: |
Description
Sam James
2022-05-18 03:17:43 UTC
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=169adc81f429529590c778c8f923663ae547f7af commit 169adc81f429529590c778c8f923663ae547f7af Author: Matt Turner <mattst88@gentoo.org> AuthorDate: 2022-05-18 16:23:39 +0000 Commit: Matt Turner <mattst88@gentoo.org> CommitDate: 2022-05-18 16:26:59 +0000 net-libs/webkit-gtk: Version bump to 2.36.2 * Raise gst dependency to >=1.20 (bug #843950) Bug: https://bugs.gentoo.org/845252 Closes: https://bugs.gentoo.org/843950 Signed-off-by: Matt Turner <mattst88@gentoo.org> net-libs/webkit-gtk/Manifest | 1 + net-libs/webkit-gtk/webkit-gtk-2.36.2.ebuild | 250 +++++++++++++++++++++++++++ 2 files changed, 251 insertions(+) (In reply to Sam James from comment #0) > 2.36.2 mentions "- Fix several crashes and rendering issues." which is > almost always "a bunch of CVEs but we don't want to say that yet". > > Thanks! This also comes two days after a Safari advisory: https://support.apple.com/en-us/HT213260 Interestingly, that page has WebKit Bugzilla bug IDs, some of which are public. The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=86cf7dde6f6cc1fdde18de42b2f66e7886c2e35e commit 86cf7dde6f6cc1fdde18de42b2f66e7886c2e35e Author: Matt Turner <mattst88@gentoo.org> AuthorDate: 2022-05-29 01:16:08 +0000 Commit: Matt Turner <mattst88@gentoo.org> CommitDate: 2022-05-29 01:17:11 +0000 net-libs/webkit-gtk: Version bump to 2.36.3 Bug: https://bugs.gentoo.org/845252 Signed-off-by: Matt Turner <mattst88@gentoo.org> net-libs/webkit-gtk/Manifest | 1 + net-libs/webkit-gtk/webkit-gtk-2.36.3.ebuild | 250 +++++++++++++++++++++++++++ 2 files changed, 251 insertions(+) Thanks, Matt! The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=3eeb7feb045225c1cb5340d78746fd5718f2b064 commit 3eeb7feb045225c1cb5340d78746fd5718f2b064 Author: Matt Turner <mattst88@gentoo.org> AuthorDate: 2022-06-29 19:24:34 +0000 Commit: Matt Turner <mattst88@gentoo.org> CommitDate: 2022-06-29 19:25:08 +0000 net-libs/webkit-gtk: Drop old versions Bug: https://bugs.gentoo.org/845252 Signed-off-by: Matt Turner <mattst88@gentoo.org> net-libs/webkit-gtk/Manifest | 1 - net-libs/webkit-gtk/webkit-gtk-2.36.1.ebuild | 250 --------------------------- 2 files changed, 251 deletions(-) The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/data/glsa.git/commit/?id=1d278bb93fbf8fdb34ef9c125c5f4536e11c15d7 commit 1d278bb93fbf8fdb34ef9c125c5f4536e11c15d7 Author: GLSAMaker <glsamaker@gentoo.org> AuthorDate: 2022-08-31 23:54:04 +0000 Commit: John Helmert III <ajak@gentoo.org> CommitDate: 2022-08-31 23:56:59 +0000 [ GLSA 202208-39 ] WebKitGTK+: Multiple Vulnerabilities Bug: https://bugs.gentoo.org/832990 Bug: https://bugs.gentoo.org/833568 Bug: https://bugs.gentoo.org/837305 Bug: https://bugs.gentoo.org/839984 Bug: https://bugs.gentoo.org/845252 Bug: https://bugs.gentoo.org/856445 Bug: https://bugs.gentoo.org/861740 Bug: https://bugs.gentoo.org/864427 Bug: https://bugs.gentoo.org/866494 Signed-off-by: GLSAMaker <glsamaker@gentoo.org> Signed-off-by: John Helmert III <ajak@gentoo.org> glsa-202208-39.xml | 74 ++++++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 74 insertions(+) |