Summary: | <net-libs/webkit-gtk-2.40.3: remote code execution (CVE-2023-32439) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Michael Orlitzky <mjo> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | Keywords: | PullRequest |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://webkitgtk.org/security/WSA-2023-0005.html | ||
See Also: | https://github.com/gentoo/gentoo/pull/31705 | ||
Whiteboard: | A2 [glsa+] | ||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | 910064 | ||
Bug Blocks: |
Description
Michael Orlitzky
![]() For security bugs, the summary should be the first fixed versions in tree. The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=236963f09df29c899edb9da02c7d5cf7b085821a commit 236963f09df29c899edb9da02c7d5cf7b085821a Author: Guillermo Joandet <gjoandet@gmail.com> AuthorDate: 2023-07-02 02:09:20 +0000 Commit: Matt Turner <mattst88@gentoo.org> CommitDate: 2023-07-06 13:59:20 +0000 net-libs/webkit-gtk: Version bump to 2.40.3 Bug: https://bugs.gentoo.org/909663 Closes: https://github.com/gentoo/gentoo/pull/31705 Signed-off-by: Guillermo Joandet <gjoandet@gmail.com> Signed-off-by: Matt Turner <mattst88@gentoo.org> net-libs/webkit-gtk/Manifest | 1 + net-libs/webkit-gtk/webkit-gtk-2.40.3-r410.ebuild | 258 ++++++++++++++++++++++ net-libs/webkit-gtk/webkit-gtk-2.40.3-r600.ebuild | 251 +++++++++++++++++++++ net-libs/webkit-gtk/webkit-gtk-2.40.3.ebuild | 248 +++++++++++++++++++++ 4 files changed, 758 insertions(+) Thanks, please stable asap The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=a0071e39738ef940e932d4fd390f818454963056 commit a0071e39738ef940e932d4fd390f818454963056 Author: Matt Turner <mattst88@gentoo.org> AuthorDate: 2023-07-16 14:36:52 +0000 Commit: Matt Turner <mattst88@gentoo.org> CommitDate: 2023-07-16 14:37:15 +0000 net-libs/webkit-gtk: Drop old versions Bug: https://bugs.gentoo.org/907818 Bug: https://bugs.gentoo.org/909663 Signed-off-by: Matt Turner <mattst88@gentoo.org> net-libs/webkit-gtk/Manifest | 2 - .../webkit-gtk/files/2.40.0-respect-RUBY.patch | 30 --- ...-262461-main-b36decf27ea9-.-https-bugs.we.patch | 37 --- net-libs/webkit-gtk/files/2.40.1-gcc-13.patch | 21 -- ...-264395-main-4977290ab4ab-.-https-bugs.we.patch | 47 ---- net-libs/webkit-gtk/webkit-gtk-2.40.1-r410.ebuild | 258 -------------------- net-libs/webkit-gtk/webkit-gtk-2.40.1-r600.ebuild | 251 -------------------- net-libs/webkit-gtk/webkit-gtk-2.40.1.ebuild | 248 -------------------- net-libs/webkit-gtk/webkit-gtk-2.40.2-r410.ebuild | 259 --------------------- net-libs/webkit-gtk/webkit-gtk-2.40.2-r600.ebuild | 252 -------------------- net-libs/webkit-gtk/webkit-gtk-2.40.2.ebuild | 249 -------------------- 11 files changed, 1654 deletions(-) The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/data/glsa.git/commit/?id=a3a0841120687c62c97e02dfd392564da420eec4 commit a3a0841120687c62c97e02dfd392564da420eec4 Author: GLSAMaker <glsamaker@gentoo.org> AuthorDate: 2024-01-05 13:00:45 +0000 Commit: Hans de Graaff <graaff@gentoo.org> CommitDate: 2024-01-05 13:01:13 +0000 [ GLSA 202401-04 ] WebKitGTK+: Multiple Vulnerabilities Bug: https://bugs.gentoo.org/907818 Bug: https://bugs.gentoo.org/909663 Bug: https://bugs.gentoo.org/910656 Bug: https://bugs.gentoo.org/918087 Bug: https://bugs.gentoo.org/918099 Bug: https://bugs.gentoo.org/919290 Signed-off-by: GLSAMaker <glsamaker@gentoo.org> Signed-off-by: Hans de Graaff <graaff@gentoo.org> glsa-202401-04.xml | 68 ++++++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 68 insertions(+) |